dharma | fbbe5adbf18c37ddee49aec819a48eedd7d6c329ec0d1eab71905d5fed08ba7d

Analysis

max time kernel
151s
max time network
46s
platform
windows7_x64
resource
win7
submitted
11-07-2020 02:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

winhost.exe
Size

92KB
MD5

37a1431c3ed1ad5264b8964b929ee919
SHA1

fa26065771340320edea37b00c9453c51f66c6b3
SHA256

fbbe5adbf18c37ddee49aec819a48eedd7d6c329ec0d1eab71905d5fed08ba7d
SHA512

86420527eb5c8d7f53711159e426702c85fb54c5bc5d777ba3852602ee907cd7631e92d8784369011ccf956a427c43c0f2260ada6b2e82dcfe76edf2a2a374bc

Score

10^/10

ransomware dharma persistence spyware

Malware Config

Extracted

Path

C:\Users\Admin\Desktop\FILES ENCRYPTED.txt

Ransom Note

all your data has been locked us You want to return? write email [email protected] or [email protected]

Emails

[email protected]

Signatures

Adds Run entry to start application 2 TTPs 3 IoCs

persistence

Registry Run Keys / Startup Folder

T1060

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\C:\Windows\System32\Info.hta = "mshta.exe \"C:\\Windows\\System32\\Info.hta\""	winhost.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\C:\Users\Admin\AppData\Roaming\Info.hta = "mshta.exe \"C:\\Users\\Admin\\AppData\\Roaming\\Info.hta\""	winhost.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winhost.exe = "C:\\Windows\\System32\\winhost.exe"	winhost.exe

Interacts with shadow copies 2 TTPs 2 IoCs

Shadow copies are often targeted by ransomware to inhibit system recovery.

ransomware

File Deletion

T1107

Inhibit System Recovery

T1490

pid	Process
1532	vssadmin.exe
1916	vssadmin.exe

Suspicious use of WriteProcessMemory 28 IoCs

description	pid	Process	procid_target
PID 824 wrote to memory of 1296	824	winhost.exe	24
PID 824 wrote to memory of 1296	824	winhost.exe	24
PID 824 wrote to memory of 1296	824	winhost.exe	24
PID 824 wrote to memory of 1296	824	winhost.exe	24
PID 1296 wrote to memory of 1048	1296	cmd.exe	26
PID 1296 wrote to memory of 1048	1296	cmd.exe	26
PID 1296 wrote to memory of 1048	1296	cmd.exe	26
PID 1296 wrote to memory of 1532	1296	cmd.exe	27
PID 1296 wrote to memory of 1532	1296	cmd.exe	27
PID 1296 wrote to memory of 1532	1296	cmd.exe	27
PID 824 wrote to memory of 1552	824	winhost.exe	31
PID 824 wrote to memory of 1552	824	winhost.exe	31
PID 824 wrote to memory of 1552	824	winhost.exe	31
PID 824 wrote to memory of 1552	824	winhost.exe	31
PID 1552 wrote to memory of 1952	1552	cmd.exe	33
PID 1552 wrote to memory of 1952	1552	cmd.exe	33
PID 1552 wrote to memory of 1952	1552	cmd.exe	33
PID 1552 wrote to memory of 1916	1552	cmd.exe	34
PID 1552 wrote to memory of 1916	1552	cmd.exe	34
PID 1552 wrote to memory of 1916	1552	cmd.exe	34
PID 824 wrote to memory of 1980	824	winhost.exe	35
PID 824 wrote to memory of 1980	824	winhost.exe	35
PID 824 wrote to memory of 1980	824	winhost.exe	35
PID 824 wrote to memory of 1980	824	winhost.exe	35
PID 824 wrote to memory of 1960	824	winhost.exe	36
PID 824 wrote to memory of 1960	824	winhost.exe	36
PID 824 wrote to memory of 1960	824	winhost.exe	36
PID 824 wrote to memory of 1960	824	winhost.exe	36

Modifies service 2 TTPs 5 IoCs

persistence

Modify Registry

T1112

Modify Existing Service

T1031

description	ioc	Process
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\VSS\Diag\ASR Writer	vssvc.exe
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\VSS\Diag\Shadow Copy Optimization Writer	vssvc.exe
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\VSS\Diag\Registry Writer	vssvc.exe
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5}	vssvc.exe
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\VSS\Diag\COM+ REGDB Writer	vssvc.exe

Modifies Internet Explorer settings 1 TTPs 2 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1131729243-447456001-3632642222-1000\Software\Microsoft\Internet Explorer\Main	mshta.exe
Key created	\REGISTRY\USER\S-1-5-21-1131729243-447456001-3632642222-1000\Software\Microsoft\Internet Explorer\Main	mshta.exe

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware

Data from Local System
T1005

Credentials in Files
T1081

Drops startup file 5 IoCs

description	ioc	Process
File created	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winhost.exe	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini	winhost.exe
File created	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Info.hta	winhost.exe

Drops file in Program Files directory 27835 IoCs

description	ioc	Process
File created	C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_th.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\ie9props.propdesc	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Checkers.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search5.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeLinguistic.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\calendar.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14868_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME28.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\InkObj.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Araguaina	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPML.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-attach.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\St_Johns	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\back.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Pretty_Peacock.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.SqlServerCe.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libgoom_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\WARN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_sml.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadcf.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\awt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsdp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14754_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs-nio2.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\ODBC.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL054.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\lij.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.DPV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196164.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.REST.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS_DocLib.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\notConnectedStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14583_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\localizedStrings.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_hover.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEWSTR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14996_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\7.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libxa_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SettingsInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CORPCHAR.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\gstreamer-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VVIEWDWG.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115863.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_rainy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\sRGB.pf	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\24.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\end_review.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Thule	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansRegular.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Efate	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_flyout.png	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21422_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOUTL.OLB	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\StandardBusiness.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_foggy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR39F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_m.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Classic.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300520.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REMINDER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msaddsr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Budapest	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInTray.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.MMW.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jinfo.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\blacklist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN103.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\plugins.dat	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ie9props.propdesc	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_rainy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10219_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBAR11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\43.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ro.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cancun	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Tirane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-text.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\tt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Taipei	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrorfromgroove.ico	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18185_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OFFXML.DLL	winhost.exe
File opened for modification	C:\Program Files\ApproveProtect.mht	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR12F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Cairo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libremoteosd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ar.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\amd64\jvm.cfg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\IPOLKINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL002.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\keystore\libfile_keystore_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\US_export_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MLCFG32.CPL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-fallback.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lv.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_h.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\mpvis.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Zurich.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPT.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18196_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14538_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART11.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME50.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCOLKI.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS2SWOOS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtospdif_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21294_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ogg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\7.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_transcode_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\WMM2CLIP.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\nio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-over-DOT.png	winhost.exe
File created	C:\Program Files\EnableEnter.php.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14656_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\eula.rtf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_Undocked.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Garden.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR20F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mset7es.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14980_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Brunei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\trash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterToolTemplates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip.chm	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Cuiaba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21366_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnPPT.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Whitehorse.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_right.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297707.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302953.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN054.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\fi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332268.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeAUM_rootCert.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLRPC.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsdl_image_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_tr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\INLAUNCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OneNoteSyncPC.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusOnline.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DenyUninstall.rm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBCOLOR.SCM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\MergeCompress.WTV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGNHM.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnPPT.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1042\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OSPP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImages16x16.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Onix32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\ONLNTCOMLIB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pt-br.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JdbcOdbc.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SegoeChess.ttf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8F.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libglspectrum_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ja.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\day-of-week-16.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\New_Skins.url	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-dock.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_realrtsp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSLaunch.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libudp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15156_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_rtp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.exe	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\skin.catalog.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Eula.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-snaptracer.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREET11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\STSUPLD.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ENVELOPE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REVERSE.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\MSClientDataMgr\MSCDM.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png	winhost.exe
File created	C:\Program Files\WriteConvertTo.ocx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\server\classes.jsa	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Tirane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PPTIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuvp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.actionProvider.exsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ENGLISH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115876.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STRBRST.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_bridge_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\FlickLearningWizard.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21311_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR21F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\WHOOSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Moncton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\en-US\MpAsDesc.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe Root Certificate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxalert.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_fr.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Formal.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-api-caching.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME48.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR27F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS2SWOOS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\SoftBlue.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149887.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\38.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSL.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroBroker.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_left.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcese35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\40.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hu.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxml2.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183168.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293828.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_INIT.XSN.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONWordAddin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\setting_back.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSPTLS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\ALARM.WAV	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\UserControl.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\11.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21481_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\WhiteDot.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado20.tlb	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115867.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10297_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285444.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NVBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN026.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\platform.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PNG32.FLT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libwall_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME30.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\nss3.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_super.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL104.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\10.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\DefaultBlackAndWhite.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWSTRUCT.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\zdingbat.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21295_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLCTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImages.jpg	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\release	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODEXL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Maldives.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_orange.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14516_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\FONTSCHM.INI	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_dot.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\bl.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14583_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImages.jpg	winhost.exe
File created	C:\Program Files\Mozilla Firefox\removed-files.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Perth.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jpeg.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\weather.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\en-US\msader15.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OCRVC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Thawte Root Certificate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\unpack.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBCONV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14539_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14801_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_es.dub	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18190_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115855.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msdasql.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Monterrey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\awt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18207_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\osknumpad\osknumpadbase.xml	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libinflate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2native.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15275_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\1033\MSGR3EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng32.clx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196374.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240719.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN089.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21512_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18243_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLTASK.FAE	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_chromecast_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\DvdTransform.fx	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME45.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SCNPST64.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286068.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\DefaultBlackAndWhite.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CORPCHAR.TXT	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mouseout.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Andorra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstack.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLADDR.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGIDX.DAT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ku.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT532.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AU.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMAIL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)grayStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1XTOR.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\PYCC.pf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14753_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\Whistling.wav	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NL.ROGERS.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-down.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_imem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libsdl_image_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Phoenix	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\jmxremote.access	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfigInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterApplicationDescriptors.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaurl.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javaw.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\en.ttt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ccme_base.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Javascripts\JSByteCodeWin.bin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR13F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLNOTER.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_Undocked.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_sun.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msdaremr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0283209.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-loaders.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14515_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\EXPLODE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-spi-actions.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMEE.CFG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\ucrtbase.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN089.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205466.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME49.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libgl_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\new-trigger-wiz.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\psfontj2d.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdadc.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\rtscom.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mspub.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SketchPadTestSchema.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fil.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS.ICO	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS9CRNRH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libxa_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaudioscrobbler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TextConv\Wks9Pxy.cnv.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0335112.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\TRANSMRR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Training.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_over.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libmft_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_de.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR20F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN048.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.NZ.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\daisies.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21320_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONENOTEMANAGED.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerEvaluators.exsd	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\ACWZDAT12.ACCDU.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\lt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME18.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\CHEVRON.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-left.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Berlin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\MSClientDataMgr\MSCDM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libparam_eq_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\32.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\Words.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR22F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\AUTOSHAP.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\LASER.WAV	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\AdobeID.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251301.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libcrystalhd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CERTINTL.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_a52_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-annotations-common.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\af.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_top_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateComRegisterShell64.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\accessibility.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\CMap\Identity-H	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1250.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPISHELLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_hail.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\Accessories\WordpadFilter.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.security.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\MSInfo\msinfo32.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-BoldIt.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1031\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18245_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.AddInManager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR13F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCDDSF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21315_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL026.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\add_up.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdate.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multiview.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Baku.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212661.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14514_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Esl\AiodLite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\tr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libball_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Tijuana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\TALK21.COM.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\AdobeID.pdf	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdasc.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSGR3FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-process-l1-1-0.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Maroon.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPTIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\java.security	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Reunion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\nio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XMLSDK5.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090386.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MANUAL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR25F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\removed-files.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudiobargraph_a_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\default.vlt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jni.h	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285410.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0287005.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR23F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_GreenTea.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CAMERA.WAV	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\ended_review_or_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Distinctive.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCTBOX.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw32.bmp	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-snaptracer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr\default.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14985_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_docked.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_windy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\logger\libconsole_logger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Damascus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgrain_plugin.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sv.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.CN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18238_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libftp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEIRM.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\System\Ole DB\xmlrw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImage.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14755_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-queries.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\adcvbs.inc	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\sl-SI\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvmem_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Eula.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multitabs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\RSSFeeds.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14981_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Roses.htm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Roses.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICTPH.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREQ.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jabswitch.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\VelvetRose.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\83.0.4103.106.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\RPT2HTM4.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\ROGERS.COM.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradient_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15276_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libbluescreen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_m.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Niue.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\timeZones.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Detroit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WPULQT98.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\DiagnosticsTap.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME35.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libafile_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\journal.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.VN.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR26F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginDialogBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\WMPDMCCore.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\PABR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_OliveGreen.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-heapwalker.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvmstat.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Jamaica	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR12F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Roses.htm	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyNotesBackground.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21348_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONLNTCOMLIB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\sentinel	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\axvlc.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\37.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ro.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Entity.Design.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.HK.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javap.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Malta	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jfxmedia.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\AUTHORS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2iexp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1252.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1033\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Adak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPTINPS.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.LEX	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.Activities.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN107.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21375_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB11.BDR	winhost.exe
File created	C:\Program Files\7-Zip\Lang\eu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSSPC.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sq.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLCALL32.DLL	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1251.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\default_thumb.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)notConnectedStateIcon.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_el.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\UCT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10256_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRdIF.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\History.txt	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\EST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ur.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ko.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSQRY32.CHM	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10268_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\va.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21305_.GIF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\BHOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15135_.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfxmedia.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile16.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\abcpy.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javafx-font.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\ELPHRG01.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Boise	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Bold.otf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Kiev	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lij.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk15\windows-amd64\profilerinterface.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Hand Prints.htm	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14867_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\44.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\external_extensions.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31F.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_left.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\PersonalContact.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Thatch.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESN.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\IPOLKINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21339_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwinhibit_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10337_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7Data0011.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSTORDB.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186348.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15168_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SSGEN.DLL	winhost.exe
File created	C:\Program Files\OptimizeRemove.jtx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\MSInfo\msinfo32.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Maputo	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\menu_style_default_Thumbnail.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Amman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ApproveProtect.mht.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2XML.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10336_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\oisctrl.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Entity.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-output2.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBREF.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\alt-rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115839.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\te.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\osknumpad.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Menominee	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229389.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18227_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\en-US\MpAsDesc.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\library.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293238.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7MODELS000A.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Chicago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Matamoros	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME46.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\xul.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\excelcnvpxy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SettingsInternal.zip	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-progress.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Panama.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-print.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\wxpr.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15184_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21331_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_h.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PNCTUATE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18242_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\keystore\libmemory_keystore_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\SY______.PFM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\gl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15272_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME42.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_elf.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterRegular.ttf	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Halifax.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\VVIEWRES.DLL	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.AddInManager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadce.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-next-static.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-api-caching.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javacpl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-views.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME18.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14692_.GIF	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.Office.Tools.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square_dot.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\flyout.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_id.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\PreviousMenuButtonIconSubpi.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\Analysis\PROCDB.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18211_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB4.BDR	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115842.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\keystore\libfile_keystore_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS10TARG.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Form.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\WHOOSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACER3X.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\WORDIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcecompact35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoBeta.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\cs.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21316_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\flyoutBack.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\COIN.WAV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsptg.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_off.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PPSLAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCINFO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\baseAltGr_rtl.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\PAB.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICSTYLES.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SHAREPOINTPROVIDER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305493.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSS.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ieproxy.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR10F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR14F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\Passport.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Araguaina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFSigQFormalRep.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14792_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Complete.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OFFXML.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21328_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\he.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libadf_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libaribcam_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lv.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_hail.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Athens.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\excelcnvpxy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-ui.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sampler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0158007.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-awt.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PG_INDEX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-modules-appui.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Eucla	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18226_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_snow.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Bold.otf	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\management.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)notConnectedStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297551.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME05.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_snow.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\Setup.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-util-enumerations.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OEMPRINT.CAT	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\libvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR42F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\US_export_policy.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299125.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\npvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-awt.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CHECKER.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21527_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTL.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\auxpad.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690Nmerical.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\verify.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.ID.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21322_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA000C.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\iediagcmd.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icudt36.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14831_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR11F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLFLTR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-synch-l1-2-0.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\va.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\FindTrace.vstm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\notification_helper.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLED.EXE	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\UTILITY.ACCDA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxslt.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Notes_btn-back-static.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSSOAPR3.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)alertIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10267_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\Journal.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-search.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libhqdn3d_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODTXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART12.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\javaws.policy	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Chita.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIPMASK.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_da.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\settings.css	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssvagent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\eula.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOHTMED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\MAPISHELLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\navBack.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10301_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR12F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CORE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\3082\MSGR3ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Beige.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.fca	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsrom.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_PreComp_MATTE_PAL.wmv	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8B.GIF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\ja-jp.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2native.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Andorra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.NO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\LATIN1.SHP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\ALARM.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_rtp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_dummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\GreenBubbles.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\VBAOWS10.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Installed_schemas14.xss.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-conio-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_rainy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLIST.CFG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhds_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\msdbg2.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18223_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\STSLIST.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Wake.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libvisual_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Resource.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\web\webbase.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\profilerinterface.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsepia_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14533_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OWSSUPP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR31F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\JNWDRV.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\9.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Aero.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\view.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\SYMBOL.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainBackground_PAL.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libshm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_srt_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ru.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\logger\libfile_logger_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libprefetch_plugin.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\zh-tw.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18239_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10302_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOCFU.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCTBOX.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msmgdsrv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\RSSFeeds.js	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.DPV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Samara	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\dotsdarkoverlay.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Yellowknife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OISAPP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\WMPNSSUI.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\MSPVWCTL.DLL.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msxactps.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_pwa_launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceqp35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Mexico_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10255_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\BCSAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SBCGLOBAL.NET.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Matamoros.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Montevideo	winhost.exe
File created	C:\Program Files\TestUpdate.MTS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\IPSEventLogMsg.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15059_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\STOPICON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.JP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\digest.s.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.swf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\verify.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292982.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.DOC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_h.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\stop_collection_data.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunmscapi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSO0127.ACL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV11.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\rss.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_de.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ml.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerConstraints.exsd	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Metlakatla	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21324_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\APA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\accessibility.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\COUPON.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AU.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\stdole.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1665.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14883_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICTPH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS4BOXES.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tr.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR22F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\WINWORD.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL065.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\swiftshader\libGLESv2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OLKFSTUB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Modern.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_no.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\adodb.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\System\Ole DB\xmlrwbin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jawt.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BAN98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msadcor.dll.mui	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\Accessible.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME48.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DOTS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Sydney.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299587.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.INF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\VeriSignLogo.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-hot.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ANALYS32.XLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_off.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\classlist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\spacer_highlights.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_sml.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\EScript.api	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-BoldIt.otf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSLID.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk15\windows-amd64\profilerinterface.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18187_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Person.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLACCT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dataset.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_plain_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX9.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system_settings.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMAIN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\Logo.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Entity.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-outline.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14580_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.XML	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ca.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_performance_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21364_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MAIL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liblibmpeg2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\35.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTEL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\ColleagueImport.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\CHICAGO.XSL	winhost.exe
File created	C:\Program Files\Mozilla Firefox\plugin-hang-ui.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\mshwgst.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0214098.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionMember.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)alertIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKL.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\fy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297185.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPTICO.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Form.zip	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\glass.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TEAROFF.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_pressed.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jpeg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\mlib_image.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider_right.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACTIP10.HLP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotionblur_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\en-US\MSTTSFrontendENU.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285444.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEXBE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.lng	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ssvagent.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLNOTER.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.DesignTime.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\1033\FPEXT.MSG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-util-enumerations.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18250_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libclone_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+1	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ODBC.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ru.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\DRUMROLL.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSAutogen.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_LOOP_BG_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\DMR_48.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Managua	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libantiflicker_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-execution.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OISGRAPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\oisctrl.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-compat.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115844.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SC_Reader.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\jsprofilerui.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-modules.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\et.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgaussianblur_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL078.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_LOOP_BG.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee90.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\21.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4F.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-conio-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zy______.pfm	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-api.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLAPPTR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18215_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_left.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Class.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_on.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OEMPRINT.CAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21309_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Resource.zip	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\artifacts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR18F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBRV.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-desk.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14795_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21427_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\common.luac	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\18.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Elegant.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.dub	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICCAP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\NextMenuButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Dawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21377_.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEOLEDB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\wxpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateCore.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\sqmapi.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\sound.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GreenTea.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\skchobj.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Stars.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libyuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TaxonomyControl.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaSansRegular.ttf	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can129.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msadrh15.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IEContentService.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AIR98.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18212_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RES98.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\net.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR24F.GIF	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\CsiSoap.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INDOMAIN.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN022.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_left.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297185.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\WARN.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL075.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\THOCRAPI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME51.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_kor.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.BR.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOMessageProvider.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\Management.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18208_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_client.xml	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\am.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN027.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JavaAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OL.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_snow.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\oisctrl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\babypink.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_top_right.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Tijuana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR40F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOUTL.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\bdcmetadata.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21296_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-process-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL044.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACTIP10.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216858.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCRD98.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98.POC	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CROATIAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\F12Tools.dll.mui	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tr.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_duplicate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115868.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\highDpiImageSwap.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDXFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_hov.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\j2pcsc.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15072_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Custom.propdesc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XPAGE3C.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_top.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOInstallerUI.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libdtv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSTORE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordcnvpxy.cnv	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\he-IL\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libvcd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10266_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_over.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBE7INTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\Microsoft.Ink.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyDrop32x32.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multiview.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME42.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\zh-tw.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL065.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bogota	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15173_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INCOMING.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado27.tlb	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Chihuahua	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\GWE.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\nssckbi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-13.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-attach.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dcpr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21337_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115855.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.dub	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Anchorage.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Martinique	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Simple.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_s.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libimage_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14981_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART6.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTES.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\To_Do_List.jtp	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)grayStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDSF.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeCollabSync.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ORG97R.SAM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_docked.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44B.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaribsub_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libfingerprinter_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libadpcm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL089.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\send-email-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FBIBLIO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EST	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-oql.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\UserControl.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\triangle.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Components\SignedComponents.cer	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Santiago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\STSLIST.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\VideoLAN Website.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\it.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US_POSIX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mset7tk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-CN.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\US_export_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SAMPLES\SOLVSAMP.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\HICCUP.WAV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dtplugin\deployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DVDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\DiagnosticsHub_is.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javafx.policy	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AppConfigurationInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\performance.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\osclientcerts.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21328_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\logo.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\cy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\DMR_120.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-compat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.security	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PTXT9.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\http.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libmmdevice_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\System.AddIn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAClientPkg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\subscription.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLCPRTID.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInTray.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSEvents.man.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART6.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15072_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libedummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21313_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libtdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\modules\httprequests.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN022.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ko.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME48.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Tools.Applications.Project.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FLT	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mn.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\attach.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\BREEZE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\native2ascii.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jdwp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14832_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPTINPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\header.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMML2MML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\pl-PL\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\uninstall.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_h.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14845_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.VN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\invalid32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186348.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_settings.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jrunscript.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libskiptags_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Caracas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18181_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FSTOCK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15059_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTOPENWORLD.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sv.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Swift_Current.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDL.ICO	winhost.exe
File created	C:\Program Files\7-Zip\Lang\fr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\HORN.WAV	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libflaschen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\fa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\34.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\xlsrvintl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-options.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CROATIAN.TXT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPAPERS.INI	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\javaws.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18247_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15169_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\button-overlay.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_bkg.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-2.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextService.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\Whistling.wav.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\pdm.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEREP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKUPD.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Half.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\VBAJET32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dcpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\plugins.dat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\delete.avi	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\TipTsf.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado21.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\THANKS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\EmptyDatabase.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\deployJava1.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14829_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORY.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\libvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmpnetwk.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Stars.htm	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10300_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libtcp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libcompressor_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libadpcm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL105.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\en-US\TableTextService.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunmscapi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glib-lite.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OCRHC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcrystalhd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\liblogo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpuzzle_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR24F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WORDIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Hovd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateHelper.msi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\BHOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_mosaic_bridge_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ahclient.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15133_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA000A.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Damascus	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SBCGLOBAL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1257.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_is.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\OrielFax.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\v8_context_snapshot.bin	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Components\SignedComponents.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN020.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IEAWSDC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextServiceArray.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACERECR.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt04.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\CsiSoap.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-BR.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0185604.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\logger\libfile_logger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\JNTFiltr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\split.avi	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\warning.gif	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_buttongraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\COUPLER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\d3dcompiler_47.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\updater.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-applemenu.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21301_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeAUM_rootCert.cer	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_left.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMASTHD.DPV	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OUTGOING.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\platform.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\SubsetList\Client.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\pingsender.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_super.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXPSRV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipshrv.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPUB.TLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCS.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR14F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\notConnectedStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\keytool.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199805.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5A.BDR	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\VIBE.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\ieinstal.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SHARING.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search5.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MAPISHELL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_LOOP_BG.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JAWTAccessBridge-64.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\LINES.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\TYPE.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_kn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\numbers\numbase.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ContactPicker.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\Logo.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.PPT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe.config	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\RELAY.CER.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1028\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\native2ascii.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\settings.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libafile_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART2.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santarem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_videoinset.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_right.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15169_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TEAROFF.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OUTGOING.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\31.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsdt.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\pa-in.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-progress.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_few-showers.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-join.avi	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21322_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsdeu.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcanvas_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_zh_CN.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\README.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\A3DUtility.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviewers.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN048.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_browser.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\AcroRead.msi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en-GB.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL065.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSACC.OLB	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_over.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\ReadMe.htm	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateSetup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+Connect to New Data Source.odc	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\FPWEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_bottom.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\Common.fxh	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OIS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip32.dll	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_hail.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INCOMING.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_few-showers.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-uihandler.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.Blueprints.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15057_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs-nio2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14528_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libkaraoke_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Notes_loop.wmv	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\jawt.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\keytool.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Belize.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15184_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Darwin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Prague.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_rainy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBTRAP.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\20.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21503_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\RenderingControl.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\t2k.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUPLD.INTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\11.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14710_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr\default.jfc	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\STOPICON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\softokn3.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTEL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0315447.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ALRTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-annotations-common.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.TW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\RPLBRF35.CHM	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21527_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTS.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115868.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Gaza	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\LightSpirit.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\default.vlt	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0336075.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLTASKR.FAE	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jvm.hprof.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_rest.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\vcruntime140.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libsubsdelay_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\15.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF	winhost.exe
File opened for modification	C:\Program Files\JoinFind.mpe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL105.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateComRegisterShell64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\HST	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SaveAsRTF.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_joined.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-heapwalker.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libttml_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21518_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\jsdbgui.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN010.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\WindowsBase.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonInset_Alpha2.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_on.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-down.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\LOOKUP.DAT	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\WIND.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\FOLDER.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dialog.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fxplugins.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcecompact35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Yakutat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceer35EN.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OUTGOING.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCDDSUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SNET.NET.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\IpsMigrationPlugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\LATIN1.SHP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DVA.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Riga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Trans_Notes_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARD11.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-core-kit.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR30F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libdeinterlace_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_hail.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\sunec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.WorkflowServices.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR37F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLICONS.EXE	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1033\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21482_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_settings.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\Passport_PAL.wmv	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\header.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLMACRO.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\SignHere.pdf	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_joined.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libmosaic_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\scenesscroll.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235319.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.SYD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21519_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\JNTFiltr.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_mr.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EntityPickerIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ADO210.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\PhotoBase.dll	winhost.exe
File opened for modification	C:\Program Files\MoveImport.vbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DissolveNoise.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.attributeTransformation.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEWDAT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10290_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.LIC	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR17F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBLINK.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14565_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR17F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\picturePuzzle.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14867_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa37.hyp	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Class.zip	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\Dynamic.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GROOVE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee90.tlb	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7z.sfx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jfr.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Cairo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18217_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IEAWSDC.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115840.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color120.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157763.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msdfmap.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15272_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18230_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZFORM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libposterize_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME15.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hebron.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMEE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10268_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESN.CFG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msdaremr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR11F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\Dynamic.pdf	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\SIGNUP\install.ins	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceca35.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.TW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libprefetch_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdatl3.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libparam_eq_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\js\cpu.js	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-back-static.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5B.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Perf_Scenes_Mask1.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Maceio.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSRTEDIT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPREARM.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libvcd_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\web.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\COIN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOCFUIUTILITIESDLL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_mr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Berlin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21326_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Oblique.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14769_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libflaschen_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvmem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ts_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\EmptyDatabase.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-PT.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\weather.css	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222015.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\manifest.json	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jvisualvm.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblendbench_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBARV.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\highDpiImageSwap.js	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMS.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BlackTieNewsletter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\builtincontrolsschema.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\QuickTime.mpp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OISAPP.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15133_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\eula.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14528_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jconsole.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1258.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-templates.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7B.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_Buttongraphic.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_off.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdate.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_rgb.wmv	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_pitch_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sampler.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL082.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bg.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mk.txt	winhost.exe
File created	C:\Program Files\Java\jre7\bin\hprof.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right.gif	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\2.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_CA.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_VideoInset.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\http.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\info.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\README.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_setid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_hover.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-core.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OFFOWCI.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21338_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jaas_nt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21303_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.lng.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\TabIpsps.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_PDF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\w2k_lsa_auth.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-snaptracer.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\javafx.policy	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Vienna.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Genko_1.jtp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\button-highlight.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302953.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXLIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\wab32.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15272_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.PPT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ca.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\ko-kr.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14869_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ko.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Discussion.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\babyblue.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\rmid.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\A3DUtility.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302827.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONBttnPPT.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOVEL.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ACE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-execution.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1028\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ConvertToSync.m3u	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115865.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WWLIB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\COIN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-text.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IETAG.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.Client.Internal.CLRHost.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\WTSP61MS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightRegular.ttf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ta.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\libxml2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\daisies.png	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsepia_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\LoginForm.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21320_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libmarq_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7z.sfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterNotificationDescriptors.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextServiceDaYi.txt	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.LIC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME44.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15019_.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_foggy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-execution.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18182_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Help\msitss55.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1AR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msolap100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14583_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Classic.dotx	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\NBMapTIP.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\MSEnv\PublicAssemblies\extensibility.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jar.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Mazatlan	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SPLASH.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.ServiceModel.Web.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSYUBIN7.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.OPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21480_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_de.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nb.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\ktab.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Web Server Extensions\14\BIN\FPWEC.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PSRCHLTS.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineBusy.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235241.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115836.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROG98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\DisabledGoogleUpdate.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18232_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTINTERNET.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205582.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18209_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_imem_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\vlm.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_up.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18252_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CGMIMP32.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-docked.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0315447.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-print.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Green Bubbles.htm	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ANALYS32.XLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NVBELL.NET.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ADRESPEL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tehran.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OLKIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\updater.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_asf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSSync.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH1.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgrain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\bandwidth.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DESKSAM.SAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\install.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Portal\PortalConnectCore.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kabul	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CharSetTable.chr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\SketchIconImages.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD11.POC	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\winamp2.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\wsgen.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR11F.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10R.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_top.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveNoDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\London.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_foggy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_100_percent.pak	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.WorkflowServices.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_pitch_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ky.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyNoDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14831_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME17.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7tkjp.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoCanary.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLAPPTR.FAE	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSYUBIN7.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrwbin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libty_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee100.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\License.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ne.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libtransform_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21343_.GIF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\AdobeID.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21310_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21533_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199036.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME42.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtwolame_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZX______.PFB	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SecStoreFile.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-applemenu.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Almaty.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\extcheck.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\OWSSUPP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15019_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\add_over.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\kor-kor.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-windows.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-threaddump.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART15.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-4	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EURO\MSOEURO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183328.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR15F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask_PAL.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Linq.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libimage_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSLID.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Hobart.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateHelper.msi	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-TW.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-fallback.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\20.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDownArrow.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14531_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL087.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222021.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\info.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORDB.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.config	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ga.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15276_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)redStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Discussion14.gta	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ONLINE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\micaut.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115866.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOSTYLE.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.CN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Filters\odffilt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig.companion.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\npt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)greenStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OneNoteSyncPCIntl.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Skins\Revert.wmz	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSansBold.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDCAT.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Brussels.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART12.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONPPTAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEMANAGED.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PACBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInTray.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrortogroove.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\manifest.json	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSO.ACL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBCOLOR.SCM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACWIZRC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\liblogger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_down.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10268_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\adcvbs.inc	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts2.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME12.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Windows.Presentation.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH2.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUCRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\DBGHELP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREQ.CFG	winhost.exe
File opened for modification	C:\Program Files\Common Files\DESIGNER\MSADDNDR.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\JP2KLib.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fa.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10256_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\LICLUA.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_cycle_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\22.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\cacerts.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51B.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterBold.ttf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\1047_576black.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECREC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_pressed.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDEC.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\sqloledb.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Iqaluit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jli.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCL.ICO	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-next-static.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXC	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateBroker.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XLCALL32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_stl_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_wav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XPAGE3C.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.UK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\iexplore.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnoseek_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-PT.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\CircleSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301076.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\logo.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL093.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\COUPLER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\DiagnosticsTap.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR19F.GIF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\STSUPLD.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\DRUMROLL.WAV	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kcms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Portal\PortalConnectCore.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\nacl_irt_x86_64.nexe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.Design.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-core.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18215_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\time-span-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Waitcursor.gif	winhost.exe
File created	C:\Program Files\Java\jre7\bin\server\Xusage.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONENOTEIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\cs.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115841.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\REVERSE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\en-US\cpu.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL109.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_transcode_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\ResourceInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285750.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_up.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libimem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Cocos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15185_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Response.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libgain_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-3.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\gmail.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR41F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider_left.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsnld.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TITLE.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFPrevHndlr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\msvcr100.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\youtube.crx	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.DataSetExtensions.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Omsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBLINK.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\fieldswitch.ax	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7jp.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_specialocc_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\en.ttt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1STAR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-modules.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msdatl3.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmid.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHLTS.DAT	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libadf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Keywords.HxK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sw.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiling.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WindowsFormsIntegration.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL102.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_rest.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Niue.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Niue	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.IN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\28.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pidgenx.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME54.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-cli.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-uisupport.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ARFR\MSB1ARFR.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME44.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\instrument.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14868_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ONLINE.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmono_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\zipfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\HICCUP.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsatip_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SplashScreen.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME09.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libinflate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcer.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\pt-PT\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCHUR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN103.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeXMP.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icudt36.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jsound.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSRuntime.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\reader\filename.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\SUCTION.WAV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationTypes.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-windows.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPEDITOR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SplashScreen.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21503_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mpjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\45.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\verify.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSYUBIN7.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cuiaba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18235_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.DOC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\redStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\zip.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-settings.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpCmdRun.exe	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-uisupport.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14580_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98SP.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif	winhost.exe
File created	C:\Program Files\7-Zip\Lang\bn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\activity16v.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\DataMatrix.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_sun.png	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\cy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\EXPLODE.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL102.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.cpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21481_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PRODIGY.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\az.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18180_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ORIG98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1253.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_delay_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIP.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote-PipelineConfig.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libkate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_vi.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\release.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Notes_loop_PAL.wmv	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBE7INTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.PH.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\msvcr100.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Havana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\awt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AppConfigurationInternal.zip	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\RADAR.WAV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_ja.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSClient.Msg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\npdeployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15056_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kab.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115856.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\bdcmetadata.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14883_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AWARDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdread_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN089.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_asf_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_rainy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\London	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SWBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\da.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VC\msdia100.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_ja.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\symbol.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Sofia	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\prcr.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212219.WMF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l2-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jhat.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\deploy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Portal\PortalConnectCore.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\descript.ion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21342_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Linq.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15072_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWCUTCHR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Manuscript.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\IPEDINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordcnvr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_bottom.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\button.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SNIPE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\javaws.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21512_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-explorer.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Yakutat	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21377_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\librtpvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZY______.PFB	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL077.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205462.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18228_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\en-US\ImagingDevices.exe.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-plaf.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_av1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\libsubsdelay_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe Root Certificate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogo.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fil.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Cayenne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUDIOSEARCHMAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR35F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SSGEN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\co.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMSMAIN.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\da.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-background.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Antigua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115840.GIF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInTray.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GR8GALRY.GRA	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libstl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Text.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN092.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Boise.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14868_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CSS7DATA000C.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\swiftshader\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\softedges.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfxmedia.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_snow.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME37.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWLAY32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cayman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21337_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over_BIDI.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302827.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14871_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQS.ICO	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_70.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1251.TXT	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\DELIMR.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKFSTUB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPPT.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-timezone-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libscreen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORES.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\net.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216724.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18232_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUPLD.INTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ba.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0252349.WMF	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\sqloledb.rll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR38F.GIF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvSOFT.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\London.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Flyout_Thumbnail_Shadow.png	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpnscfg.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Real.mpp	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_el.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18254_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmap.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XPAGE3C.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOHTMED.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\en-US\sqlxmlx.rll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\invalid32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITY.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQ.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\SettingsInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18222_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\FPWEC.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GB.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME36.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18193_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Curacao.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterRegular.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_settings.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Darwin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\LASER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libvhs_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18209_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21306_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ky.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\Bear_Formatted_RGB6_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationRight_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jvm.hprof.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\logging.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAClientPkgUI.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-compat.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONBttnWD.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_on.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.IN.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMANIAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\serialver.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.MMW.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\WHOOSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\fxplugins.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liberase_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFTMPL.CFG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_chromecast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Merida.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_over.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.HOL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ11.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\alert_obj.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234687.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Adobe.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\te.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14752_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15136_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_m.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mset7tkjp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME38.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_dot.png	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN081.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-services.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10307_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_down.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\master_preferences.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\mozavcodec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\QRCode.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1049\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\ImagingDevices.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.DataSetExtensions.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ReceivePing.ex_.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCSBAR.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\pushplaysubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEDAO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libcdda_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN065.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\plugin-container.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Makassar	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\id.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10336_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL016.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+NewSQLServerConnection.odc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115842.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21307_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Mahe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7fr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\release.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\ReadMe.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18190_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18256_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_h.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\BCSAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT532.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\VSTARemotingServer.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+6	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\33.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21338_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL001.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdca_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN026.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\RSSFeeds.css	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_over.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OneNoteSyncPC.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\tt.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java_crw_demo.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LOGO98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\AMERITECH.NET.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21398_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18213_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21518_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libanaglyph_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-middle.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115863.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFRES.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libbluescreen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_On.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pa-in.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\whitevignette1047.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxerror.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\psfont.properties.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115866.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LOGO98.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\IA32.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\FAX\EquityFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\symbase.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\mlib_image.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Currie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS10TARG.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\OCLTINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\master_preferences.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\vignettemask25.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Formal.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15022_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSSync.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_initiator.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fi.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-PT.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-io.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREETING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15274_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.SYX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Araguaina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Amman	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSODCW.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18181_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCWIZ\UTILITY.ACCDA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icucnv36.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14801_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\mshwgst.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-progress.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME01.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dts_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_smem_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\39.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TextConv\MSCONV97.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX.ECF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Resolute	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7ge.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Spelling.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\promointl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157995.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART10.BDR	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\et.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149627.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR42F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ga.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Tunis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvmstat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286068.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_rest.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImage.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libuleaddvaudio_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\AUTHZAX.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14579_.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_up.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fil.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\index.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_LOOP_BG_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_ja.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\de.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1033\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\glass.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR18F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Singapore.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hr.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234687.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado15.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7en.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN109.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-queries.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CDLMSO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierCloseButton.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceme35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSCOL11.PPD	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\crashreporter-override.ini	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOInstallerUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199036.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libinvert_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-impl.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+11	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblendbench_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\tabskb.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODBC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\invalid32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-14.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr\profile.jfc	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libtwolame_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\blank.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Reunion	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+10	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ConfirmExport.jtx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\MET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_windy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Bissau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Guayaquil.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CHIMES.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Invite or Link.one	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ContactPickerIntl.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\meta-index	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\js\main.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsusf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libaudioscrobbler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_up.png	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURE.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_gather_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\pmd.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javadoc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\servertool.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7ES.DLL	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ODBCR.SAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME52.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-private-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\skin.catalog	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoBeta.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fi.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegaudio_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME09.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTL.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\management.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME55.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_bridge_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblendbench_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can03.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\picturePuzzle.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviewers.gif	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationRight_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSCommon.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCH98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libaudiobargraph_v_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Abstractions.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\STSLIST.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKIRM.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsound.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL106.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OISGRAPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdav1d_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrw.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\WISC30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libanaglyph_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\af.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Bibliography\BIBFORM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ru.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-awt.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\THOCRAPI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21324_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\REPTWIZ.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\reflect.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.descriptorProvider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115839.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLJRNLR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\resources\1033\Synchronization.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdtv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado15.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\MSCONV97.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\row_over.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONELEV.EXE	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\oisctrl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\logging.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\be.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\pt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zG.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TOC98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REFEDIT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_rest.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\gu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationUp_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\az.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME43.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1B.BDR	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Framework.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15277_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIPC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\JP2KLib.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\WriteMerge.mp4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-settings.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSACC.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradient_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-imageMask.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.XLA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.InfoPath.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiling.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14869_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14791_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15061_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14595_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18206_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297551.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig.companion.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLTASKR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME11.CSS	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt55.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\MSInfo\en-US\msinfo32.exe.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIP.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\en-US\PhotoViewer.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10289_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libgain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-next-static.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\Documentation.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.KR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw120.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14691_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\1.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\1047x576black.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libprefetch_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_de.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0287005.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ORG97.SAM	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\oledbvbs.inc	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\TestUpdate.MTS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Madrid.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericon.jpg	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\xul.dll.sig	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5B.BDR	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libdav1d_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Portal\1033\PortalConnect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSAutogen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21303_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\soniccolorconverter.ax	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UCT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\j2pcsc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-io.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhds_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hwrenclm.dat	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Belem	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\SoftBlue.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\DMR_48.jpg	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_videoinset.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOInstallerUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18205_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\HORN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REMINDER.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\MCESidebarCtrl.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-settings.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdca_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaSansDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Init.xsn	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXE8SharedExpat.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\settings.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-progress-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18180_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092700.pma	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Interface.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_autodel_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-14	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSQRY32.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libnfs_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10290_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL093.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\npdeployJava1.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\en-US\MpEvMsg.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2String.XSL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_browser.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.LEX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTFORM.DAT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\MCIMPP.mpp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\npvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PICTIM32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bn.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ur.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OFFREL.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado28.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PACBELL.NET.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IT.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WORDIRMV.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-plaf.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALNDR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msader15.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ru-RU\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QRYINT32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR11F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_up.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_over.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_K_COL.HXK	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-US.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\WMPDMCCore.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Magadan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\WMPDMC.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sv.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR26F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7cm_fr.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CA.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_few-showers.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21314_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CLVIEW.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\EquityFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libripple_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\1.0\Microsoft.Ink.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSEngine.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\LICENSE	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\verify.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java_crw_demo.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\TextFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7z.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\1033\EEINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-3	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14513_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21336_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteNames.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupicons.jpg	winhost.exe
File opened for modification	C:\Program Files\GroupBackup.ppsx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\date-span-16.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libalphamask_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\da.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15059_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECREC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ACE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_extended.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\cacerts.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-highlight.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WZCNFLCT.CHM	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hu.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-keymap.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME23.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libchain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_buttongraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_is.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Esl\AiodLite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21365_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.rst	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\v8_context_snapshot.bin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ca.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Bears.htm	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libftp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ja.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\OptimizeRemove.jtx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\pmd.cer	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149481.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21399_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14794_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpCommu.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\DataMatrix.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\22.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)greenStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUTHZAX.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SLERROR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libwebvtt_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115875.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkNoDrop32x32.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libnfs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_down.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmiregistry.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14792_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_h.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\settings.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\eula.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21434_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14532_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1258.TXT	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2native.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\SwitchTest.dwfx	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACERCLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sawindbg.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14754_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_settings.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\WebKit.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css	winhost.exe
File opened for modification	C:\Program Files\UnregisterStop.midi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\TOOLICON.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mspub.exe.manifest	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties	winhost.exe
File created	C:\Program Files\Java\jre7\lib\alt-rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\bg.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBAR11.POC	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293236.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostName.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\Whistling.wav.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmad_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DigSig.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITL.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205466.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libudp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\slideShow.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.cer	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14530_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextServiceAmharic.txt	winhost.exe
File created	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_shared.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14692_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.ComponentModel.DataAnnotations.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15021_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14831_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDFFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251925.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\sidebar.exe	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\StandardBusiness.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\RPLBRF35.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DOTS.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Juneau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Newsprint.dotx	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\14.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-BoldIt.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.hsp	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Curacao.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CYRILLIC.TXT	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\README.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnWD.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jstack.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\SIST02.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\iedvtool.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAILMOD.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\updater.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceoledb35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_delay_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\new-trigger-wiz.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\orbd.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHLTS.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zy______.pfm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10267_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jmx.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\instrument.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskpred.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Accra	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwingdi_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\SecretST.TTF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\npt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21336_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpRTP.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14693_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d11_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PNG32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote-PipelineConfig.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jdwp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZX______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\bg-BG\tipresx.dll.mui	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUCRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-split.avi	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\diagnostic-command-16.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IEContentService.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libnormvol_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig.companion.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293828.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\A3DUtility.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square.png	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\images\bing.ico	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Garden.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javac.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe\Help\en_US\Adobe Reader\9.0\helpmap.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.DLL	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\EScript.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dcpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301252.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\rt3d.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordcnvr.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsen.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GKPowerPoint.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\ResourceInternal.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN98.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_shout_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteUI.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCD98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKIRMV.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Macau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\JPEGIM32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\rtscom.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\DiagnosticsTap.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpOAV.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromaprint_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msadox.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-text.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293844.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\Microsoft.stdformat.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_SelectionSubpictureA.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL048.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-text.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\wab.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.msi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_snow.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\io.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_INIT.XSN	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\th.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoCanary.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\klist.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONELEV.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_iw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeUpdater.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\attach.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205462.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EAWFINTL.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\0.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\RSWOP.ICM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\PDIALOG.exe.mui	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\bn.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18198_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jaas_nt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_stl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21535_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18199_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\RECALL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL027.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER98.POC	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Optional\README.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\deploy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImages.jpg	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdaterInstallMgr.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-cli.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SLERROR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\TipRes.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDS.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libadummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18206_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ACE.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL110.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_nl.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libddummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\weather.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORM98.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\mozavutil.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationLeft_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21342_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.VN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\glass_lrg.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mousedown.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.STD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs-nio2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233312.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME04.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLY98SP.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.ID.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tr.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pt-br.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MsMpLics.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationClient.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7F.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Engine.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\WMPDMCCore.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Maceio	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-fallback.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-io-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.JP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\librss_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\COUGH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\xul.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Folders\MSOSV.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR37F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnoseek_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\16.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.policy	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_ja.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\cmm\GRAY.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\TOOT.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libtdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.H.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\modules\host.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\he.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Bears.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL016.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-progress-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\zipfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\1033\CAGCAT10.MML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24Images.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\localizedStrings.js	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_h.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Omsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\zh-TW\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\COUGH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH2.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL058.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CA.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\diagnostic-command-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INCOMING.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-private-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\StandardBusiness.pdf	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImages16x16.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterNotificationDescriptors.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\uninstall.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\msaccess.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Javascripts\JSByteCodeWin.bin	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\wsimport.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\wxpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-image-inset.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LINEACT.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0291984.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcanvas_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_wasapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-today.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hr-HR\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerEvaluators.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297749.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\skin.dtd	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-6	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0278882.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\misc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Classic.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ta.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.DPV	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOMessageProvider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-common.jar	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\720x480icongraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14655_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Macau	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODEXL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-keymap.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME07.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-localization-l1-2-0.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\35.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_srt_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-modules.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libd3d11va_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\NBMapTIP.dll.mui	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-BR.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\NextMenuButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15134_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21333_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Perspective.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libdeinterlace_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\IEAWSDC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_hov.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.MMW	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Hermosillo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZFORM.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\2d.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextServiceArray.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32Info.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lv.pak	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Management.Instrumentation.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\css\currency.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationProvider.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\tnameserv.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLPH.DLL	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\classlist	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME11.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME08.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\7-Zip\Lang\nl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\libxslt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL022.XML	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\eo.txt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTES.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCH98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Mexico_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwasapi_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_h.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\HST10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR.HXS	winhost.exe
File opened for modification	C:\Program Files\ShowUnregister.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\greenStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GB.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XLCPRTID.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\snmp.acl.template	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WPULQT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-horizontal.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Minsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCS.ICO	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\Bear_Formatted_MATTE2_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-plaf.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14710_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITY.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR24F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBAD.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\appletviewer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javac.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\alt-rt.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\docs.crx	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_gu.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Belize.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\Xusage.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\cursors.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBRV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSO0127.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\resources.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libbluray-j2se-1.0.2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AU.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\GIGGLE.WAV	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\WinMail.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java-rmi.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18257_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-options.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationClientsideProviders.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21295_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\liblogger_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\stop_collection_data.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\youtube.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\New_York.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\VSTARemotingServer.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+7	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Thule.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDEC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPIRMV.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Hermosillo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0278882.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\THOCRAPI.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+8	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSO0127.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21328_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORM.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\attention.gif	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\iedvtool.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSQRY32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSSOAP30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14755_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\NOTICE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFRES.CFG	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\WindowsMedia.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14985_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\Install\{5DF2DCA9-BD54-4513-9B32-2C551D72B961}\83.0.4103.106_chrome_installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GR8GALRY.GRA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14867_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libstats_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libqsv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee90.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\NAME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\WindowsAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART4.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\en-US\PhotoViewer.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15060_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1253.TXT	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jsse.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US_POSIX.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Moscow	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSCOL11.PPD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jawt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\updater.ini	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\handler.reg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21343_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14882_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\setup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Minsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSN.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PAPERS.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSSOAPR3.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285410.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kuching	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OFFLINE.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.Infopath.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOT.WAV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\background.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jdb.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332268.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SC_Reader.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dialog.zip	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME52.CSS	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationLeft_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Default.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libreal_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_client.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298653.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MANUAL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSPPT.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SOCIALCONNECTORRES.DLL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsfsstorage_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLIST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR38F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Belize	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21310_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLVBS.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblend_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jarsigner.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoCanary.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-TW.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14530_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\minidump-analyzer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\icon.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\modules\dkjson.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\MedianFax.Dotx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\cy.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14830_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCRD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR29F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msmdlocal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14580_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libsapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ca.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmirror_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15135_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrortogroove.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\librtpvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14793_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN022.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\Tulip.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_te.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado26.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeUpdater.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javacpl.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_autodel_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115844.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\vi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216588.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21307_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44B.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\xmlrw.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOML.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\44.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\liblogo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21333_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\ActionsPane3.xsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\CT_ROOTS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR16F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ApproveProtect.mht.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jawt.h	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18224_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21306_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ.POC	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ja.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL078.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_pressed.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\GREEK.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_duplicate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmpnssci.dll.mui	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXSLE.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285926.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL106.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234131.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSPTLS.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTLVBA.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msdarem.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWSTRUCT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SETLANG.EXE	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jdwp.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javafx.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14529_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-4.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\VBAOWS10.CHM	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_right.png	winhost.exe
File opened for modification	C:\Program Files\ImportUse.vdw	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\AdobePDF417.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EURO\MSOEURO.DLL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\libaudiobargraph_v_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR13F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\GIFIMP32.FLT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libx265_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10256_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multitabs.xml	winhost.exe
File created	C:\Program Files\Java\jre7\bin\decora-sse.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxalert.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR24F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLCTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\javafx.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\el.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\IEAWSDC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Karachi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionOwner.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL095.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libnetsync_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libt140_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\mip.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\SETUP.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msdarem.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Samara.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIP.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SOA.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Wordcnvpxy.cnv.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\sound.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18211_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Month_Calendar.jtp	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\scene_button_style_default_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRLEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\corner.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\en-US\wab32res.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_over.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS53BOXS.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_rest.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCDDSLM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask.wmv	winhost.exe
File created	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.SqlServerCe.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsoundds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\installer.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\INLAUNCH.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-tabcontrol.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Merida.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14581_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\WORDIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\fontmanager.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIcon.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kcms.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\13.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Macau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAProject.dll	winhost.exe
File created	C:\Program Files\7-Zip\descript.ion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305257.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\Messenger.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PRODIGY.NET.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195534.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CLVIEW.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR12F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL090.XML	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\MSEnv\PublicAssemblies\extensibility.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\clock.html	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FEZIP.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javac.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.FR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205582.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR17F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.DPV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\console_view.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider_right.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\readme.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWSHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14795_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1257.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jcmd.exe	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\scrapbook.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\FAX\OriginFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\LICLUA.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.sig	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\UTC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\PABR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libglwin32_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\eula.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javadoc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\8.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\PipelineSegments.store.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ms.pak	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21400_.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_over.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Yellowknife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libgain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME47.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\MpOAV.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME10.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\hprof.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL090.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB10.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZY______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299763.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Cayman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\NEWS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_CA.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeAUM_rootCert.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMSMAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\RECOVR32.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\JavaAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGN.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msmdlocal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipssve.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcc_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ml.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Acrofx32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Class.zip	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME26.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\15x15dot.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\setup.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\header.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw120.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\1px.gif	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Scene_loop_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ms.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutSyncPC.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-It.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\drive.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10265_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libedgedetection_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile16.png	winhost.exe
File created	C:\Program Files\Java\jre7\bin\verify.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Cocos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18251_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLBAR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR42F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\MMHMM.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPUB.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART1.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\default-browser-agent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14996_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESP98.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\ReadOutLoud.api	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\MDIParent.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Montevideo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxalert.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BULLETS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\LINES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME19.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MAPISHELL.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\RTFHTML.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\create_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libh26x_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\numbers.xml	winhost.exe
File created	C:\Program Files\7-Zip\7z.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BULLETS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsmb_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\IpsMigrationPlugin.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrortogroove.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dili.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NL.ROGERS.COM.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15273_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10335_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR40F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\New_Skins.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado28.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\validation.js	winhost.exe
File opened for modification	C:\Program Files\Windows Portable Devices\sqmapi.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186002.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_foggy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\chrome.7z.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-BR.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MOFL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-8	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OIS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\librss_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14656_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ODBCR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ORG97R.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.AddIn.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxml2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsoundds.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Martinique.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AboutBox.zip	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEWSTR.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSQRY32.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\setup.swf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Panama.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\FindBlock.pps.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOICONS.EXE	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Qatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\UTC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDS.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLTASKR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Updater.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\classlist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libprojectm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\JP2KLib.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\41.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kab.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusDoNotDisturb.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\sbdrop.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice_installer.exe	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\LightBlueRectangle.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\sunec.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInAcrobat.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SCANPST.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-11	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_over.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMain_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15275_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\DMR_48.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21390_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_hover.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.AddInManager.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-tabcontrol.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZX______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guyana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveNoDrop32x32.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14595_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdater.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\create_form.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Singapore.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\EET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Efate.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14984_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\msaccess.exe.manifest	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsharpen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\EmptyDatabase.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OISINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\settings.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL105.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libaribcam_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\NOTICE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sa.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN105.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ro.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceer35EN.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libtransform_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIBUtils.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Monaco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\ResourceInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_PDF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-spi-quicksearch.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-horizontal.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadco.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TaxonomyControl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\APPLAUSE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\play-static.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL048.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AWARDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\add_reviewer.gif	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Module.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\46.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\THROAT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULQOT98.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\tzmappings	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSTORES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SaveAsRTF.api	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\2052\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfr.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199283.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libinteger_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-execution.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15156_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXLIRMV.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\http.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14829_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libadjust_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\tesselate.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\1047x576black.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\IPEDINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\SIGNUP\install.ins	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN095.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\AUTOSHAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITY.CFG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORYVERT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLNOTE.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\WMPDMC.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\alert_obj.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\npjp2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQS.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\1033\EEINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\AUTHORS.txt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\en-US\WMM2CLIP.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\RemoveResume.asp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\librv32_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL012.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mouseout.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zFM.exe	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\VBE6EXT.OLB	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\IA2Marshal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\navSubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251871.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Tanspecks.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Recife	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGN.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSGR3FR.LEX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-font.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSAEXP30.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Perspective.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299763.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18225_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_right.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183290.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-core-kit.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCH98SP.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\currency.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\wmlaunch.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ext.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuvp_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1665.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\iedvtool.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-attach.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\activity16v.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21390_.GIF	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceca35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\jhall-2.0_05.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_m.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21313_.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadcs.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WINWORD.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+12	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MAIL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\adcjavas.inc	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ENGIDX.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115843.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Extensions\external_extensions.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\en-US\css\cpu.css	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15171_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.XML	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nl.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bahia	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Mazatlan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\main.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ConfirmExport.jtx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14578_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Denver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_duplicate_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml	winhost.exe
File opened for modification	C:\Program Files\ConnectExpand.ADTS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229389.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME15.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\CAN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AssemblyInfoInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR10F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\POWERPNT.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18241_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Peacock.jpg	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10R.CHM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fontmanager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\oledbjvs.inc	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\adobepdf.xdc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SLINTL.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ga.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CHECKER.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21520_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft	winhost.exe
File created	C:\Program Files\Mozilla Firefox\pingsender.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-GB.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Detroit	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\45.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSClientManifest.man.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MIMEDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGDIC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43B.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_scrapbook_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.swf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEM.CFG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_10_p010_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfoInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ORG97R.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kabul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_floating.png	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\NAMEEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-actions.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-uisupport.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\MergeCompress.WTV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL087.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_gu.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Havana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSRuntimeUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.HK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\apt.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLY98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\ieinstal.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSClientManifest.man.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.CN.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-BoldIt.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\awt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\vistabg.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Ojinaga	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\UseOpen.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\DW\DBGHELP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IMCONTACT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kabul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-backglow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL022.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogo.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL010.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOInstallerUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SOCIALPROVIDER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.XML	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ResumeUnlock.wma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_description_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\triangle.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroBroker.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\XDPFile_8.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14792_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15301_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-print.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14768_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.MMW	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\en-US\ImagingDevices.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\STSLISTI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME34.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.NZ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\InkSeg.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jdb.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REVERSE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\redStateIcon.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_disabled.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPDESIGN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-today.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OSPP.VBS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liboldmovie_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBRV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\index.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\decorative_rule.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\cursors.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14997_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROG98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libattachment_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14654_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15170_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\tr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liberase_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-12	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229389.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\PUSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL077.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\tools.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-process-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libntservice_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdirectory_demux_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\attach.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18197_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ms.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ar.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\sbdrop.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149481.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\F12Tools.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14832_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\liblogger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLADD.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\Accessories\en-US\wordpad.exe.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234131.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_es.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libheadphone_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MST7MDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_snow.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE.MANIFEST	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18248_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\mpvis.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.exe.sig	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME34.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\APIFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Lagos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpuzzle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLIST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\NamedURLs.HxK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Newsprint.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.JP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libkate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_setid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Easter	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_cycle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceer35EN.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14579_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SSGEN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\7zG.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\micaut.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceme35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\builtincontrolsschema.xsd	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\custom.lua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libnfs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\jaccess.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESN.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Real.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\MSOHEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14790_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSCOL11.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAMEEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\SPPlugins\ADMPlugin.apl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng.hyp	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\wsimport.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPHPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\freebl3.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ta.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Lima	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN065.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Explorer.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME54.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14594_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\16-on-black.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18182_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.xml	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_70.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_bridge_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_cloudy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\jsdbgui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21348_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18220_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaSansDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MY.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\Setup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Visualizer.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15273_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL107.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDownArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STRBRST.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Brussels	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Dublin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-impl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21311_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCRD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\FLASH.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusAway.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_left.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VC\msdia100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OSPP.HTM	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.ComRPCChannel.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\ConvertFromAdd.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendtoOneNoteFilter.gpd	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msadomd28.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FEZIP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\validation.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL001.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.attributeTransformation.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EMSMDB32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PTXT9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15277_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\dnsns.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14710_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECC.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxml2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15155_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14530_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART7.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\distribute_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\WTSP61MS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\THOCR.PSP	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunec.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME46.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_delay_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\nio.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\MCIMPP.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENVELOPE.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115866.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\es.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF	winhost.exe
File created	C:\Program Files\RemoveResume.asp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Godthab.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293828.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\reflow.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\JPEGIM32.FLT	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Mahe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690Nmerical.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado25.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234131.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Newsprint.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfreeze_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199661.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN027.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\local_policy.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15058_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.ES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square_h.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\New_York	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libd3d11va_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18216_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14871_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN110.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management-agent.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.SG.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\title_trans_scene.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jsse.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME47.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeCollabSync.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateOnDemand.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\NOTICE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\npvlc.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\open_original_form.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\simplexml.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libyuv_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\en-US\MsMpRes.dll.mui	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\ELPHRG01.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\LOCALDV.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\eula.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\INLAUNCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN090.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\reader\filename.luac	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-execution.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_thunderstorm.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\gui\libqt_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_m.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Optional\README.TXT	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado26.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297749.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\FeedSync.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10254_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEDAO.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTIT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\background.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\InkObj.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_zh_CN.jar	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\OneNoteSyncPC.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14693_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\THROAT.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XIMAGE3B.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jmap.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Sitka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18201_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-execution.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.IO.Log.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Wordcnvr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_On.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_floating.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\cursors.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Vancouver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice_installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Stars.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\LICENSE	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Groove Starter Template.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_es_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\RSSFeeds.html	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21518_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB6.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.JP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterToolTemplates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfigInternal.zip	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ku.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\Timeline.cpu.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX2.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jps.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\photograph.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\en-US\Sidebar.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libsmb_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_disabled.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\psfont.properties.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TextConv\RECOVR32.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxinfo.ico	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Spelling.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-snaptracer.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\weblink.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JdbcOdbc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-awt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14533_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_left.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\th.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15020_.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libdxva2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\management.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME17.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBEMAIL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10298_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\hprof-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7es.kic	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mouseout.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEWSS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\de.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmic.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\La_Paz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.SYX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\FeedSync.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Mozilla Maintenance Service\updater.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\Dynamic.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\wlsrvc.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18181_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PICTIM32.FLT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS2BARB.POC	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRLEX.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask_PAL.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21330_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser_64.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Paris.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\ARROW.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_s.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18197_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PRODIGY.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl-hot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WZCNFLCT.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\WindowsAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21319_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs-nio2.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Palau	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.hyp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-charts.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\APIFile_8.ico	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POST.CFG	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_email.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\mip.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSans.ttf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Taipei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCVDTUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10308_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER.XLAM	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\MSOHTMED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libadf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\calendar.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_Off.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH.HXS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15172_.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\helper.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\WANS.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Riga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULQOT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Web Server Extensions\14\BIN\FPWEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Entity.Design.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SPANISH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-spi-quicksearch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-BR.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\BHOINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\tt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jar.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActions.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301480.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_VideoInset.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Paramaribo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14691_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fa.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16Images.jpg	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Background_Loading.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21548_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Person.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROG98.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ACT3.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\AUTHOR.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-conio-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\sqloledb.rll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EntityPicker.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Tunis	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Dublin	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\WIND.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293234.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR21F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\fonts\TwemojiMozilla.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.Adapter.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\F12Tools.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\REPTWIZ.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_settings.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL086.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Phoenix.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0283209.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18205_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msxactps.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\br.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+12	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL090.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\JSProfilerCore.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\BREEZE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_realrtsp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Regular.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+9	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21296_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-util.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_cs.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15184_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ta.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-common.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msaddsr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Hermosillo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Recife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\uz.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dt_shmem.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiling.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\id.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18239_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-processthreads-l1-1-1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightItalic.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14795_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Traditional.dotx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libskiptags_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\trash.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsdt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-spi-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSEvents.man	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libinteger_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\libxslt.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\BCSAddin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rainy_River	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-hot.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Thawte Root Certificate.cer	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\send-email-16.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18227_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipscat.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Memories_buttonClear.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\VBE6EXT.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14754_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21481_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\open_original_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14582_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-keymap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\oisctrl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21329_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.OPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_up.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\softokn3.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\wsgen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+8	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationClient.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_es_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\GroupBackup.ppsx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_sent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDCNCL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-back-over-select.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\UCT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR31F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\3082\MSO.ACL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14791_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL012.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15034_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Edmonton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cayman	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TOC98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Royale.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSProxy.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\ENUtxt.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\logger\libconsole_logger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-US.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IMPMAIL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS.HXS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.TH.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\ActionsPane3.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_iw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile_bezel.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\blacklist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\ieinstal.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\27.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21527_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL107.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-fallback.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msadox28.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\an.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21323_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can129.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSSMS.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-8	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMES.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-actions.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Manila.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_m.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_XPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.metadataprovider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\1033\FPEXT.MSG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_wasapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kaa.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0335112.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\FUNCRES.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipschs.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Shorthand.emf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Country.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\VBAJET32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-2	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMDOS.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\CodeFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee90.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\form_responses.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\RADAR.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jrunscript.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_dot.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18251_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libgnutls_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Jamaica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMSXP32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-charts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsusf_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\QRCode.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\16-on-black.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Nassau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Vienna	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090386.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_windy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.descriptorProvider.exsd	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\crashreporter.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-plaf.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Swift_Current	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\chrmstp.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\mlib_image.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterApplicationDescriptors.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdatt.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222017.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\jnwdui.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21344_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Complete.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcroppadd_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\WriteConvertTo.ocx	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_down.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690Nmerical.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liblibmpeg2_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\1033\CAGCAT10.MML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Perth.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18192_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libnormvol_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN105.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroSign.prc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\powerpnt.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\flyout.css	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zFM.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-utilities.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222021.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\sports_disc_mask.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199727.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\firefox.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmplayer.exe.mui	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_INTRO_BG.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18189_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpshare.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\management.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\UnregisterStop.midi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoDev.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\CodeFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee100.tlb	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-options.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR13F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ru.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212957.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\attention.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\month.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-PT.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Shades of Blue.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286034.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\Words.pdf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSQRY32.EXE	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\9.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Title_Page_Ref.wmv	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\wsgen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ViewerPS.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_rtl.xml	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libflaschen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ms.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\VVIEWDWG.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTEL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN086.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSLID.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME02.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SCNPST32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libtdummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mousedown.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.fca	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ta.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.rst.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.Selectors.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\STSLISTI.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACT.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.Server.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\lgpllibs.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1655.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\FAX\MedianFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\pdf.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18208_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fa.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\tzmappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR21F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN095.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SLINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Module.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSAIN.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME10.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\Documentation.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-settings.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_over.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssLogo.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\1036\MSGR3FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\BOMB.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Interface.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME24.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RTFHTML.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\JdbcOdbc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Noronha.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\QRCode.pmp	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\localedata.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\RPT2HTM4.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\acro20.lng.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\SettingsInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\bg.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199755.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305257.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\js\settings.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\BCSRuntimeRes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14677_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL002.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA000A.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SecStoreFile.ico	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MOFL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-13.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0211949.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\adobepdf.xdc	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLCTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\COMPUTER.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_INIT.XSN.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoBeta.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tr-TR\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\view.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Menominee.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmagnify_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\glib-lite.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.dub	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-highlight.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\decora-sse.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\artifacts.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14533_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\ACWZLIB.ACCDE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Midway	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10265_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14768_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABELHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system_m.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\adovbs.inc	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCFUIUTILITIESDLL.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroSign.prc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFTMPL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLMIME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18254_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SNIPE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115864.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNL.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233018.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-highlight.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk15\windows-amd64\profilerinterface.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-nodes.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB11.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL083.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msadomd.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_socket.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1B.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\WET	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\VideoLAN Website.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\cacerts.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\th.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\xmlrwbin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanPhotoAlbum.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\blacklist	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYERHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.FR.XML	winhost.exe
File opened for modification	C:\Program Files\NewRename.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\reflow.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Maldives	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\chapters-static.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dt_shmem.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrorfromgroove.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\FeedSync.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationBuildTasks.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWORIENT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libkaraoke_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\my\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_display_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_over.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Lagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Montevideo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Casual.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMAIL.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ORG97.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Init.xsn	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\COUPON.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MARQUEE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ru.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Brussels.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\networkinspection.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Discussion.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FS3BOX.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15170_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CYRILLIC.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Denver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\DirectDB.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ro.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SpaceSelector.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297707.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21340_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SWBELL.NET.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBCONV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-6	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsharpen_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15018_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MIMEDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-previous-static.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\management.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICTPH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18233_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10264_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libgestures_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile_bezel.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR25F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WPULQT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACEDAO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_vi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\UCT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_dot.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\clock.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\kn.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115839.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR21F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18229_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14869_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-14.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\VeriSignLogo.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\back.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199755.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Title_Page_Ref_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\VBE7.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square_m.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fontconfig.properties.src	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.FormControl.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL111.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.ServiceModel.Web.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_hov.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_thunderstorm.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\ODeploy.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_70.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-modules-appui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GFX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfo.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\wabfind.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nassau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285410.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN027.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\MSClientDataMgr\MSCDM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR10F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOMessageProvider.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWORIENT.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OFFOWC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\server\classes.jsa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SAEXT.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\PhotoAcq.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\minidump-analyzer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_et.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234687.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251925.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME02.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DigSig.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-2.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\8.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\am.pak	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fil.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcolorthres_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\SketchIconImages.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\PipelineSegments.store.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\TOOLICON.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18180_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15132_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14654_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liboldmovie_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Dublin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298897.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\1033\CAGCAT10.MML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_en.dub	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-io-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\npjp2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_foggy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java_crw_demo.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\10.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\header.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libts_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\APPLAUSE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14871_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OFFOWCI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libvod_rtsp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-snaptracer.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Portable Devices\sqmapi.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21435_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ModifiedTelespace.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\ShadesOfBlue.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RECALL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH1.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBREF.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18250_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSWORD.OLB	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\INLAUNCH.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sv.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Fortaleza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libhttps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SplashScreen.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\whiteband.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0295241.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEREP.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-io-ui.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-windows.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ko.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine_64.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL103.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-windows.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\MLA.XSL	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.ComRPCChannel.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnOL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\MSOHEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pt.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART9.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MARQUEE.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTINTERNET.NET.XML	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ja.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\DESIGNER\MSADDNDR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_150.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7es.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\en-US\PhotoAcq.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18249_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_h.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jaas_nt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jsse.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183290.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ImportUse.vdw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lij.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\keystore\libfile_keystore_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0295241.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\WatchFormat.wmf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTS.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd.otf	winhost.exe
File created	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\wab32.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-utilities.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\rtstreamsink.ax	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Malta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nb.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsfra.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsesp.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCFUIUTILITIESDLL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libudp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLAPPT.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\button-bullet.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21333_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEML.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msdaremr.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME43.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\83.0.4103.106.manifest	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18223_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21365_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21423_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Northwind.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\application.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sv.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTIT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7es.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libreal_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Premium.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\ea-sym.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233018.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\sv-SE\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Charitable Contributions.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jrunscript.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libx26410b_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1046\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\gfserrorfromgroove.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_elf.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\1033\OFFICE10.MML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Printing.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en-GB.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_block_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\flyoutBack.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\calendars.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\OptimizeRemove.jtx	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Perth	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-US.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199661.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\UserControl.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\chrome.VisualElementsManifest.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOInstallerUI.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Matamoros.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libball_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACETXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS2BARB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libmpg123_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18224_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_iw.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-api.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OL.SAM	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_VideoInset.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\audiodepthconverter.ax	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PEOPLEDATAHANDLER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CLICK.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libwebvtt_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-keymap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ResumeUnlock.wma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NVBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Algiers	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21366_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_http_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Web Server Extensions\14\BIN\FPWEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotiondetect_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Explorer.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EXLIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtwolame_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\service.js	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\ACCOLK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN108.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1254.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-tabcontrol.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\adovbs.inc	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21335_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.Targets	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME28.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORYVERT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\et.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301480.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.Client.Internal.CLRHost.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_videoinset.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115864.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\1.7\Microsoft.Ink.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\button-highlight.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-9	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Sitka	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298897.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18248_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VPREVIEW.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OCRVC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME40.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\VOLTAGE.WAV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_settings.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAILMOD.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdcp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18202_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Beirut	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292020.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300912.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmiregistry.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ogg_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierUpArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\en-US\js\cpu.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-progress-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR27F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCSBAR.POC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ja-JP\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\Accessible.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUPLD.INTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libuleaddvaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\splash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\4.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\CHEVRON.ICO	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLLEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\New_York.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sampler.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jfr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-awt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\bl.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18243_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoBeta.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10255_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\REFEDIT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libxa_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\dt_shmem.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d11_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\USP10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\drive.crx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Reunion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAMECONTROLPROXY.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\charsets.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guatemala.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.Design.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CENTEURO.TXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN092.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0211949.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18221_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Bibliography\BIBFORM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\engphon.env.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21311_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN058.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.THD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_nl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Guam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBARV.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Currie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-visual.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EST5EDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpEvMsg.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-output2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteNames.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OSetupPS.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN065.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\XmlFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es-419.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\java.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroTextExtractor.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua	winhost.exe
File created	C:\Program Files\Java\jre7\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14828_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\INFOPATH.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\PYCC.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSLaunch.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SENDTO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ccme_base.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WORDIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\TRANSMRR.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskpred\oskpredbase.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLADD.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineIdle.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\FDFFile_8.ico	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\1px.gif	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\uk.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SETLANG.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmpnscfg.exe.mui	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\io.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14539_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN097.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0221903.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Issue Tracking.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\Timeline.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21326_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Flash.mpp	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\avtransport.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msadcfr.dll.mui	winhost.exe
File created	C:\Program Files\7-Zip\Lang\eo.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR10F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDBAR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msdaremr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\WHOOSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL027.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jfr\default.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\management\jmxremote.password.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTINTERNET.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ko.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glass.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jps.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\prism-d3d.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR21F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_et.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee90.tlb	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLMAILR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN010.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_right.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\file_obj.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\klist.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTL.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18225_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotiondetect_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bg.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\apt.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-nodes.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msdaprsr.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench_3.106.1.v20140827-1737.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MAPISHELL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\10.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFTMPL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Form.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLLEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR15F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\AUDIOSEARCHLTS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_m.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\uk-UA\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Chihuahua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21334_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\WPGIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\activity16v.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\msgfilt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15134_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACEDAO.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BlackTieLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_de.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.PH.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3B.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-utilities.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME32.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpuzzle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libparam_eq_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\localizedSettings.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_left.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\management.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACECORE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\WISC30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)notConnectedStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR12F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ml.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART13.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\REFEDIT.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\mr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STP	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\InkDiv.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-modules-appui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IETAG.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21421_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWSHM.POC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297749.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImagesMask.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149481.WMF	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_mr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODTXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149627.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-applemenu.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10358_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\gstreamer-lite.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dtplugin\deployJava1.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateComRegisterShell64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsound.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\FAXEXT.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\networkinspection.dll.mui	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_windy.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Regular.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.VisualBasic.Targets	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskmenu\oskmenubase.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.DPV	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_floating.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\drag.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\STSUPLD.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT532.CNV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME40.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\tesselate.x3d	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OSETUP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCD98SP.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Wordconv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsita.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-core-kit.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Christmas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFPrevHndlr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\InputPersonalization.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-execution.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\nio.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Review.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\US_export_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLJRNL.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerConstraints.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kinit.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\JPEGIM32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OCRVC.DAT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18210_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdate.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\settings.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_hover.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPLACE.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_divider_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB8.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\CsiSoap.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.lng.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ro.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART7.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Speech.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSLaunch.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\SPPlugins\ADMPlugin.apl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OEMPRINT.CAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdread_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\pdf.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\artifacts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SWBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKUPD.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1A.BDR	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\net.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART2.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MsMpRes.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\msdatasrc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_top.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21503_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OISAPP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONLNTCOMLIB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\IACOM2.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0088542.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14790_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_avi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCVDT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN107.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\INTLDATE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR17F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.DynamicData.Design.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-coredump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\currency.data.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\NamedURLs.HxK	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Miquelon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\BOMB.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\schemagen.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18229_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\7z.sfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\whitemenu.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32Info.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtextst_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libtransform_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\Accessories\en-US\wordpad.exe.mui	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\trash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\sidebar.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2launcher.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEWSS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libadaptive_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa37.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActionExceptionHandlers.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADVCMP.DIC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SELFCERT.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\2d.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-TW.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Stucco.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222015.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INDOMAIN.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\eula.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudiobargraph_a_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR24F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\cmm\sRGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RCLRPT.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Module.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceqp35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libtimecode_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\IA32.api	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\zh-CN\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightRegular.ttf	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\11.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\FlickLearningWizard.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\TOOT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME31.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libdummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CORPCHAR.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_down.png	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libidummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\msvcp140.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_stl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FSTOCK.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libttml_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-tools.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationClientsideProviders.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN111.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\grvschema.xsd	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\join.avi	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\pl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jconsole.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251871.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME55.CSS	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Web Server Extensions\14\BIN\FPSRVUTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\splashscreen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_copy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\SmartTagInstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Creston.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+5	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199661.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\blank.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0281904.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zx______.pfm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\co.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-heapwalker.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ContactPickerIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18187_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME07.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\yo.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\removed-files	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACERCLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14755_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\base-docked.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\6.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\MediaReceiverRegistrar.xml	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\setup.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18207_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\picturePuzzle.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_th.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\PersonalContact.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\et.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\currency.data.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Caracas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-heapdump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1041\hxdsui.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Managua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Discussion.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB1A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextServiceYi.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_nl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Traditional.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\CLNTWRAP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\BCSLaunch.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.FR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up_BIDI.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ug.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\NAMECONTROLPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ka.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guayaquil.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\DefaultID.pdf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-lib-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21364_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293240.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\SY______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmlaunch.exe	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ACT3.SAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PRTF9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSans.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\hi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatializer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\cacerts.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_ja.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OSPP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_VideoInset.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Cocos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18243_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\el.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmlaunch.exe.mui	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\RPLBRF35.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Psychedelic.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionOwner.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN001.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent.png	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\mshwLatin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\SUCTION.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_stats_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\23.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\TALK21.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\36.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jar.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CSS7DATA000A.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18203_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceca35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sl.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_es.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Luna.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\tr.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GKExcel.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\el.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-previous-static.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-vertical.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-private-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\GIFIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEM.CFG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Wrinkled_Paper.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Thatch.dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\it.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.CHM	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2String.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\BUZZ.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search5.api	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Montreal	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\EScript.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sv.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\DELIMR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.jpg	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-delete.avi	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\flavormap.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\vdk150.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ca.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\OCLTINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_XPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)redStateIcon.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\MSOHEV.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Atikokan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+1	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\StopIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif	winhost.exe
File created	C:\Program Files\Mozilla Firefox\osclientcerts.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ahclient.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Pine_Lumber.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21495_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\InkWatson.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART1.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-lib-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GRAPH.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\xjc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234657.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCANPST.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-1	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunec.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\JoinFind.mpe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115865.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\PST8PDT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSPUB.TLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ko.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sawindbg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\yo.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwgl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\rtstreamsource.ax	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\INTLDATE.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadco.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-compat.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15023_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\Microsoft.Office.Infopath.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\qipcap64.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_disabled.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ccme_base.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\eBook.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_s.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\librtpvideo_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MYSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\ALARM.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwgl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199036.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251871.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_stats_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ViewerPS.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\gmail.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEODBCI.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21400_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\BOMB.WAV	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mp4_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18251_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MLCFG32.CPL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_ja.jar	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ar.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME27.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLCPRTID.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR19F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SPLASH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\1033\VVIEWRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21427_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.DE.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR23F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Routing.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\gl.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-7	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_zh_CN.jar	winhost.exe
File created	C:\Program Files\7-Zip\7-zip.chm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Guam	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libqsv_plugin.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\be.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libgme_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQ.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_content-background.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Montreal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SettingsInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1254.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jawt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CHECKER.POC	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\TextConv\WksConv\Wkconv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MCPS.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGM.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\alertIcon.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\eventlog_provider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.H	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeCollabSync.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15132_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLFLTR.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-print.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cancun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.dll.sig	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\IPSEventLogMsg.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsound.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsoundds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Gaza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_up.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\6.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\it.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\BHOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBLINK.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\sr-Latn-CS\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.DirectoryServices.AccountManagement.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsptb.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0088542.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\dependentlibs.list	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdasqlr.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Document Parts\1033\14\Built-In Building Blocks.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\awt.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER11.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME37.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21423_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sr.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14757_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\grvschema.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REC.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21422_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpconfig.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es-419.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\RTC.der	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21331_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MARQUEE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\pdmproxy100.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\splashscreen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15020_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\AccessWeb\RPT2HTM4.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICCAP98.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.Runtime.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+2	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME30.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\AccessibleHandler.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\redmenu.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX9.x3d	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\pipanel.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-io-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-io-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-fallback.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\THROAT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\El_Salvador.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jre7\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\j2pcsc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART3.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN044.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerEvaluators.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\ROGERS.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawaud_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoCanary.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092700.pma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21370_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\settings.ini	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\720x480blacksquare.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-lib-uihandler.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15134_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\RM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\NEWS.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\wmplayer.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\Wks9Pxy.cnv.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\DLGSETP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\HAMMER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\EquityFax.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Updater.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jawt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libexport_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskmenu.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15058_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME35.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL109.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\MpAsDesc.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\npt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR28F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WORDICON.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.XML	winhost.exe
File created	C:\Program Files\ConnectSelect.dib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14516_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_da.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0287005.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\greenStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14756_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME15.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libstl_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_bottom_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RCLRPT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DigSig.api	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_da.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_imem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\oledbjvs.inc	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOSTYLE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_down.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Hobart	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UCT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.XLA	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN086.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\prc\MyriadCAD.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_a52_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\am.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\ShadesOfBlue.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\msvcr100.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Adak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME26.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGMGPUOptIn.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\UKRAINE.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiler.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\HST10	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\license.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_initiator.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR16F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME20.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14528_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libbluescreen_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_all.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32Info.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\26.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-queries.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDCNCL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\sqloledb.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_shmem.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14984_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Acrofx32.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\enu-dsk\M1033DSK.LTS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15185_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libntservice_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\init.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONFLICT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\TURABIAN.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libnetsync_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_disabled.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Magadan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN095.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Apia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285926.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusOnline.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115867.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH1.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sr-spl.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Green Bubbles.htm	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14983_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21548_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_livehttp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\ZY______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusDoNotDisturb.ico	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\policytool.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR2F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\resources\1033\Synchronization.rll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\cpu.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ja.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLAPPT.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN081.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\logsession.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInAcrobat.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msadcor.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21306_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\ACWZUSR12.ACCDU.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libidummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PSRCHPHN.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsvorepository_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_down.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\localizedSettings.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235319.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\VIBE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libstereo_widen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\DefaultID.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Kiev.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\FDFFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstat.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\t2k.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CENTEURO.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21504_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7B.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-oql.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsound.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18219_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libhttps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nb.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hu.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationBuildTasks.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Sydney	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Notes_content-background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libidummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Andorra	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\THANKS.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBTRAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18230_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESP.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\EmptyDatabase.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7EN.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293844.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\HideRedo.mpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OneNoteSyncPCIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl-hot.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\id.txt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MSTHED98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15018_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Prague.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Form.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutSyncPC.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmono_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multitabs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPMS.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\gu.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.XML	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\circle_glass_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\ActionsPane3.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\15x15dot.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Inuvik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2launcher.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR16F.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACCDDSUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0315447.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME45.CSS	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL083.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_floating.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Chagos	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\FPWEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-services.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MY.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\my\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscene_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrwbin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR26F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\zdingbat.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18245_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javaw.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.SG.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Memo.emf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10254_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\TipTsf.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAMECONTROLSERVER.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDBAR98.POC	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ACT3R.SAM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR16F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREET11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\St_Johns.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-io.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_hover.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_http_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\launcher.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\DataSet.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-outline.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_on.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLAPPTR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_uk.dll	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\F12Tools.dll	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\SNEEZE.WAV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libty_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IETAG.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-util-enumerations.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7FR.DLL	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg_sml.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sa.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\GreenBubbles.jpg	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\YEAR.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\SNEEZE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Adak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR18F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libvpx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineBusy.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jdwp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\file_obj.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-favorites.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jsadebugd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDSLM.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericonMask.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Brunei	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationUp_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN011.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IMCONTACT.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\OrangeCircles.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.DPV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\instrument.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10308_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\excelcnvpxy.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\vi.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\License.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Custom.propdesc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\vlc.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21399_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-remote.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21534_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ogalegit.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\crashreporter-override.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hwrlatinlm.dat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLAPPT.FAE	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\wsdetect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\PACBELL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\digest.s.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\glass.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Darwin	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPSLAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Utilities.v3.5.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_play.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tpcps.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOUC.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_settings.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-options.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14870_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_zh_CN.jar	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\docs.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\mn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_distributed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHOME.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.KR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.Targets	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_Off.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\43.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg_sml.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\LICENSE	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\vdk150.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+2	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDEC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEERR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santiago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Winnipeg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dili	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can32.clx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Berlin	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\ParentMenuButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\javafx.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\colorcycle.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked-loading.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGMGPUOptIn.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\d3d11\libdirect3d11_filters_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_te.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado20.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_shout_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART5.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mr.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18246_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d9_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251301.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_id.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DissolveAnother.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libcompressor_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEWSS.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS9CRNRH.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_distributed.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\chrome.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT632.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21427_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNOteFilter.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\grayStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\hy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222021.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME36.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UTC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18207_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Flash.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Tools.Applications.Project.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWCUTLIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msadcfr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART6.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNS.ICO	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\lt-LT\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\uninstall\helper.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21332_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\mpvis.DLL	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\XDPFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\2.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\cs.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Acrofx32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_hover.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_zh_CN.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-5	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21339_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcese35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.INI	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL097.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_CA.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\fur.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\symbol.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\OARPMANR.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_selectionsubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\installer.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS_DocLib.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OIS.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\amd64\jvm.cfg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOMessageProvider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\elevation_service.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaenum.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IEAWSDC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.RSD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.bmp	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Text.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115863.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\STOPICON.JPG	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ru.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AWARDHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS2SWOOS.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.XLS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_en.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART2.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\sunmscapi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OCRHC.DAT	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216858.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21433_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip.chm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21325_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Web Folders\MSOSV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCVDTUI.DLL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10290_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\mr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ORIG98.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTES.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-desk.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Samara.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\maintenanceservice.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WINWORD.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ATPVBAEN.XLAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.TH.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_left_hover.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\klist.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ONLINE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR28B.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AboutBox.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-actions.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSMMS.CFG	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextServiceDaYi.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.PPT	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199549.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN102.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\add_down.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libvnc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jsoundds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\mshwLatin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.Office.Tools.v9.0.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmc.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTIT.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_lg.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BAN98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jsadebugd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Barbados.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+NewSQLServerConnection.odc	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfoInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\subscription.xsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME35.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+NewSQLServerConnection.odc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\simplexml.luac	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Sign.xsn	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN058.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.ComRPCChannel.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_it.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222017.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromecast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10219_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\keystore\libmemory_keystore_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP	winhost.exe
File created	C:\Program Files\Mozilla Firefox\precomplete.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\VOLTAGE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libadummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Baku	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PSRCHKEY.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL044.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msadox28.tlb	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14769_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\Logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg_orange.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pidgenx.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\3difr.x3d	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\MSEnv\PublicAssemblies\extensibility.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\cs.pak	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Peacock.htm	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR25F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyReport.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14516_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEB11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTFORM.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\1047x576_91n92.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\content-types.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dubai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Peacock.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\jaccess.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART12.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XOCR3.PSP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_no.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18214_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_uk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\Timeline_is.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15168_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\main.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\INDOMAIN.ICO	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\83.0.4103.106\83.0.4103.106_chrome_installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\PPSLAX.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\System.AddIn.dll	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\F12.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\ACCOLK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsatip_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\NavigationButtonSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.DLL	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\El_Salvador.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EET	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-highlight.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTES.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15057_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR17F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLMIME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\DMR_48.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine_64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235319.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\JAWTAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_settings.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_rest.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Orange Circles.htm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\unpack.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hu.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\DLGSETP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\UnblockTest.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoBeta.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Vancouver	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\CST6CDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\IPEDINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationUp_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\javafx.properties	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libequalizer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ja.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\Xusage.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\PDDom.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB11.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libcdda_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MORPH9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.Server.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_hail.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOUTL.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44F.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwasapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\EPSIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18199_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\CET	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-4.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_down.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\amd64\jvm.cfg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jce.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Curacao	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPREARM.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIconMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\dependentlibs.list.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javap.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXC	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\resources.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LOGO98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\net.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\uninstall.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-templates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSCommon.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\main_background.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_es.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Month_Calendar.emf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR28F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\VSTARemotingServer.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233070.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css	winhost.exe
File created	C:\Program Files\CopyDisconnect.pub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libntservice_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwinhibit_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\en-US\DVDMaker.exe.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251301.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285698.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\mr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FRENCH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Utilities.v3.5.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\servertool.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMSXP32.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCNPST32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46B.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiling.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7db.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\JoinStop.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME54.CSS	winhost.exe
File created	C:\Program Files\7-Zip\Lang\si.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libh26x_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293236.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_read_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libglspectrum_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQ.CFG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\title_stripe.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Help\msitss55.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Beirut.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeLinguistic.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_all.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\end_review.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_sent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CGMIMP32.HLP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORY.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115856.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSSync.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAILMOD.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\Accessories\WordpadFilter.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-options.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\WindowsAccessBridge-64.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHPHN.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\en-US\MpEvMsg.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\el-GR\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21434_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActions.exsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285360.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sr\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ICELAND.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\css\calendar.css	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_right.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_m.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.HOL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmplayer.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECS.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL097.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\tr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\airappinstaller.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199549.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.security.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14983_.GIF	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Management.Instrumentation.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL092.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_snow.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdav1d_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\pushplaysubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\LoginForm.zip	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateCore.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPOLK.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ca.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14756_.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\WHOOSH.WAV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\CLNTWRAP.HTM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLRPC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-disable.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToNotesBackground.wmv	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Asuncion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ru.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEREP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1042\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\FLTLDR.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSN.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaer.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemuxdump_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\12.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\add_reviewer.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\Keywords.HxK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18212_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\bear_formatted_matte2.wmv	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_divider_left.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME04.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7MODELS000C.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\va.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO98.POC	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jfr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Creston	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pl.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSSMS.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.XLS	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jmap.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\RedistList\FrameworkList.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196374.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ca.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\omni.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\HandPrints.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUTHZAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ConvertFromAdd.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaTypewriterRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\SETUP.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticnotification.exsd	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VC\msdia90.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\updater.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OFFRHD.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_m.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18201_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\CAN.WAV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDownArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mng2.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsoundds.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115843.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\ResourceInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14654_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN111.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\sRGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.REST.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21316_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\APIFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-oql.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME19.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libinteger_mixer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\hint_up.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Monaco	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSWORD.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\pt-br.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Bogota.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORMCTL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_left.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ICELAND.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21307_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN111.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tl.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\accessibility.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157995.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.DPV	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\crashreporter.ini	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Accessibility.api	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fontconfig.bfc	winhost.exe
File created	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lv.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-api.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216588.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsftp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Eucla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\HICCUP.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ms.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IMPMAIL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_cs.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Amman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MCPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.PL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\js\slideShow.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB10.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293238.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Juneau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAMECONTROLPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\jnwmon.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_et.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-background.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_travel_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\local_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21337_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\verify.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\meta\reader\filename.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\pt-BR\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME29.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICSTYLES.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC.HXS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME23.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.DPV	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pa-in.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115876.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msjro.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\UTC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\d3d11\libdirect3d11_filters_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\PDDom.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR20F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\w2k_lsa_auth.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18184_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092334.pma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15168_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0252349.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OARTCONV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\skchui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-javahelp.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-ui.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3B.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_glass.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\settings.html	winhost.exe
File created	C:\Program Files\7-Zip\Lang\es.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOHTMED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jstatd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ospintl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESEND.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\libxml2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\AUTHORS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR27F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_hov.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MAIL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50B.GIF	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Uninstall.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nome	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21505_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+11	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libsatip_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME36.CSS	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticnotification.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98SP.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\orbd.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\mozavutil.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\psfont.properties.ja	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285750.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-spi-quicksearch.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-text.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14833_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLMIME.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoCanary.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\5.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\eula.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libvod_rtsp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\ielowutil.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Whitehorse.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14800_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsharpen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Orange Circles.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JAWTAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_extractor\libarchive_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\31.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-javahelp.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Music.jtp	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider_left.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSGR3ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\TYPE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Eirunepe	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\handsafe.reg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESEND.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\charsets.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Rome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ru.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-BR.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR18F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_ok.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-settings.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\OrangeCircles.jpg	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zCon.sfx	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-disable.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\be.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\auxpad\auxbase.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21331_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_am.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ATPVBAEN.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_ok.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passportcover.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jfxmedia.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18200_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupiconsmask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHPHN.DAT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\awt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Abstractions.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\ICU\icudt26l.dat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-plaf.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18202_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLMAILR.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME28.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupiconsmask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\SY______.PFM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\23.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fontmanager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21329_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199283.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Default.dotx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Net.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\settings.css	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcolorthres_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Zurich	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvm.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\month.png	winhost.exe
File created	C:\Program Files\Java\jre7\bin\installer.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\currency.data	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECL.ICO	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\header-background.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18239_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PG_INDEX.XML	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\visualization\libvisual_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.Office.Tools.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kuching.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYERHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\1033\OFFICE10.MML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmpnssci.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\main.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\DataMatrix.pmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\Management.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Graph.jtp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsfsstorage_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\day-of-week-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\vcruntime140.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser_64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\title_trans_notes.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229385.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_el.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPLACE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Seoul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-14.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL022.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_up.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1251.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\tr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPLACE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Discussion14.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\attention.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Colombo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18244_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-desk.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\file_obj.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTLVBA.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\on_desktop\slideshow_glass_frame.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300520.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_bottom.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msador15.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\content-background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14832_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\FLTLDR.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\WMPDMCCore.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\flight_recorder.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSGR3FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\RTC.der.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0336075.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\PersonalContact.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt32.clx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\d3d9\libdirect3d9_filters_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\en-US\WinMail.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15171_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\glow.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_h.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ast.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\sqlxmlx.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libfluidsynth_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Lagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\da.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.XML	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\13.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\et-EE\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libinvert_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_snow.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACTIP10.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORE.EXE	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXE8SharedExpat.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties	winhost.exe
File created	C:\Program Files\Java\jre7\bin\rmiregistry.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_disabled.png	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\play-background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\README.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14870_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-TW.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-search.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\AUTHZAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10254_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\unpack200.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOSTYLE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONPPTAddin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BAN98.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301252.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libripple_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-options.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxinfo.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\Messenger.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-heapwalker.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\keystore\libmemory_keystore_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\d3dcompiler_47.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cayenne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOVEL.WAV	winhost.exe
File created	C:\Program Files\Java\jre7\lib\flavormap.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\WatchFormat.wmf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\MLA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_top.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Phoenix.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.H.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Palau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\libremoteosd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\rss.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_F_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR15F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21322_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-charts.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libhttp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN001.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\MSMAPI\1033\MSMAPI32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libmod_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\5.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Asuncion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FEZIP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libcaca_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\sqlxmlx.rll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMES.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18198_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34F.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\updater.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuvp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\tr.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115834.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\setup_wm.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\TRANSMGR.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java-rmi.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115835.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libttml_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado25.tlb	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\preloaded_data.pb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240695.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\BHOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\UmOutlookStrings.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.Infopath.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+3	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21398_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\zh-tw.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\perf_nt.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\local_policy.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMAIL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21314_.GIF	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine_64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MY.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_thunderstorm.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-CN.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Miquelon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEODBCI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ms.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299763.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-It.otf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticnotification.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15185_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-4	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Moncton	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME16.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteNames.gpd	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\logsession.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSOUC.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\main.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_no.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Oral.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libadpcm_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psmachine.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_mosaic_bridge_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-awt.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libimem_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Managua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\README.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SAEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14594_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ta.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-border.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21299_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-core-kit.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jinfo.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar	winhost.exe
File created	C:\Program Files (x86)\Mozilla Maintenance Service\logs\maintenanceservice-install.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART8.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\maintenanceservice_installer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system_s.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsepia_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\br.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14752_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEERR.DLL	winhost.exe
File created	C:\Program Files\Mozilla Firefox\fonts\TwemojiMozilla.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JAWTAccessBridge-64.dll	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_client.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sampler.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\UKRAINE.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_snow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstack.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupicons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MST	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CLVWINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Manuscript.dotx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-correct.avi	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\bdcmetadataresource.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_distributed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\t2k.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msaddsr.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\15x15dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\COUPON.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\SNEEZE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msaddsr.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15302_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL092.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0214098.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libhttp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.service.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipskor.xml	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l2-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\mobile.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\highlight.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSORES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Groove Starter Template.xsn	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\jsdebuggeride.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7tk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SLERROR.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0187423.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Lima.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\br.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.REST.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot_lrg.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color32.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_jpn.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACWIZRC.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\uk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libmarq_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-remote.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285750.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR45F.GIF	winhost.exe
File opened for modification	C:\Program Files\ShowUnregister.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\nio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.DPV	winhost.exe
File opened for modification	C:\Program Files\WriteConvertTo.ocx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\HideRedo.mpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2ssv.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18185_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdread_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Lima.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\shuffle_down.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-utilities.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\nb-NO\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jcmd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHED98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-explorer.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240719.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFRES.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300840.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\US_export_policy.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\VideoWall\203x8subpicture.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ta.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\adojavas.inc	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\mip.exe.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18211_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME29.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15135_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21330_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextServiceYi.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\PMAILEXT.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ar.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dataset.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Mazatlan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\ACTIVITS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSSMS.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToNotesBackground_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Graph.exe.manifest	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\specialmainsubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaSansRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mouseover.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Teal.css	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.Selectors.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PSTPRX32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\liblibmpeg2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextService.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_extended.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\release	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\29.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR19F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTOPENWORLD.COM.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL075.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_INTRO_BG_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACC.CFG	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.THD	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jstat.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\main.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javaws.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WZCNFLCT.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\UrbanFax.Dotx	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293236.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18202_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Graph.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-timezone-l1-1-0.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\fxplugins.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0284916.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14980_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libwave_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORY.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\activity16v.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216724.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN082.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Seoul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Regular.otf	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\PreviousMenuButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SplashScreen.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229385.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGIDX.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ps.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\weather.js	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.XLA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\vlm.html	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.aup.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kk.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UTC	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Juneau	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-heapdump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1253.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SENDTO.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15023_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\SaslPrep\SaslPrepProfile_norm_bidi.spp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_pwa_launcher.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\jsdbgui.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\localizedStrings.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115876.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_super.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL081.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-next-over-select.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ka.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-dock.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\OriginFax.Dotx	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORMCTL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18228_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libscreen_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\2052\hxdsui.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask_PAL.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OIS_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\adcjavas.inc	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Xml.Linq.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pl.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ko.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18226_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-processthreads-l1-1-1.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\26.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_ca.xml	winhost.exe
File created	C:\Program Files\7-Zip\7zCon.sfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PNCTUATE.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\axvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-visual.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\AUTHZAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dcpr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\validation.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\currency.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.BR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POST.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME25.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14757_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14866_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Help\msitss55.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EMABLT32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199755.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEXBE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21398_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.LEX	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\VSTARemotingServer.tlb	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\WinMail.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Makassar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS2BARB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jarsigner.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAClientPkgUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SAMPLES\SOLVSAMP.XLS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15022_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libsapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\UnregisterStop.midi	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tl.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdate.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\cacerts	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Qatar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhds_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msader15.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH.HXS	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\freebl3.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMAIN.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.DesignTime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0283209.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\YEAR.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Sign.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\jmxremote.access.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libremap_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\update-settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-templates.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCINFO.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\SaslPrep\SaslPrepProfile_norm_bidi.spp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceme35.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\NEWS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ospintl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\ja-jp-sym.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-filesystems.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ACT3R.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Couture.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\currency.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JdbcOdbc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOUC.EXE	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\diagnostic-command-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21318_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipssrl.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\README.HTM	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\logging.properties	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\47.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298653.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15018_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7fr.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR32F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr\profile.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPOLK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305257.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Karachi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-oql.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PSTPRX32.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\GIGGLE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2String.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\management\snmp.acl.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0230876.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CLVWINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPAPERS.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPUB.TLB	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMANIAN.TXT	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Empty.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115841.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libwave_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zy______.pfm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\TitleButtonSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBARBLL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\librtp_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtospdif_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\kaa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305493.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXSLE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\fontmanager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Elegant.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-GB.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActionExceptionHandlers.exsd	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OSPP.VBS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_en.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down_BIDI.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\mainimage-mask.png	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemuxdump_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jce.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.CMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\schemagen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\xul.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONFLICT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libstereo_widen_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcroppadd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXT	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCESS12.ACC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mset7.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Folders\1033\MSOSVINT.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Jamaica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous_partly-cloudy.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ko.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21482_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR00.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR19F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeXMP.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\QuickTime.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\mng.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Regina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jawt.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLBAR.INF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_mainImage-mask.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\Microsoft.stdformat.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsrus.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21305_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.Adapter.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\console_view.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\FUNCRES.XLAM	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroBroker.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\Words.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Settings.zip	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_socket.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286034.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Chihuahua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Beige.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\TextFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\it.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPLTMPL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\wmpnssui.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_selectionsubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guyana	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21519_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\xjc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2XML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\bdcmetadataresource.xsd	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\j2pcsc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libchorus_flanger_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18189_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\th.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15169_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME23.CSS	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcfr.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Noronha	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLTASK.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libvhs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.FormControl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\SETUP.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glib-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.ES.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN109.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libalphamask_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-13	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\HideRedo.mpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLVBS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.UK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14793_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Paris.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.HOL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\apt.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_it.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_VelvetRose.gif	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Belem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297185.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21448_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21298_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Almaty	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR37F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\engphon.env.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\HxRuntime.HxS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21323_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9B.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwgl_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO11.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18203_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MML2OMML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_flyout.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sendopts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\DefaultBlackAndWhite.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcroppadd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292152.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\RICHED20.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21295_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TITLE.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL083.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-actions.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7fr.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONBttnOL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\HxRuntime.HxS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\slideshow_glass_frame.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME31.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICCAP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSansBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SpaceSelector.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPHPROXY.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN010.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\unpack.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN075.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195384.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14790_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\JFONT.DAT	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\avtransport.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7Models0011.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\AccessibleHandler.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\SY______.PFM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\abcpy.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-favorites.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Winnipeg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7Lexicons0011.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\vlc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia.api	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxslt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\AccessibleHandler.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libbluray-j2se-1.0.2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_disabled.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\swiftshader\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Cancun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297707.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14997_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR1F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AppConfigurationInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2iexp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Class.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Elegant.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EXLIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libclone_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdater.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21332_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME14.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME33.CSS	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-search.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libsapi_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\DisabledGoogleUpdate.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLVBS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IO.Log.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\icon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.FormControl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfreeze_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21413_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WSIDBR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15173_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_en-GB.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\form_responses.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACER3X.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\UseOpen.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+Connect to New Data Source.odc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CNFNOT32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLNOTER.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ReceivePing.ex_	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\SETUP.XML	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\kn.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\WPGIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\DESIGNER\MSADDNDR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115835.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\WMPMediaSharing.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHSRN.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\jsprofilerui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\glass.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\libmarq_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.exe.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Onix32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SAEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-cli.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guayaquil	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186348.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15133_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-visual.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\RADAR.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\co.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoDev.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\decora-sse.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Tijuana	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21297_.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpsychedelic_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\uk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down_BIDI.png	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Brunei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-It.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORDB.EXE	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\policytool.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\bin\w2k_lsa_auth.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSEvents.man.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21482_.GIF	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_lv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\msdatasrc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BlackTieResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-progress-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OMSMAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSans.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\settings.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSRuntimeUI.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301252.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\IA32.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB4.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msado27.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME01.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SETLANG.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+12.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SpaceSelector.ico	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CAMERA.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lv.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18221_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\hr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Algiers.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\excel.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10289_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME27.CSS	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Manaus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\eu.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+4	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\firefox.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\grayStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\SIST02.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\vlc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfig.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\CASHREG.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORT.CFG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXLIRM.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Help\en_US\Adobe Reader\9.0\helpmap.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tehran	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutDomain.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcrystalhd_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\ELPHRG01.WAV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-ui.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTEAR.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDXFile_8.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\release.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\MoveImport.vbe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msadox.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEOLEDB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL054.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\zh-cn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libattachment_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\de-DE\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0284916.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\ConnectionManager.xml	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\eBook.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\LOOKUP.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs-nio2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multitabs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21535_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EURO\MSOEURO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color120.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\airappinstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_wav_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\2.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightItalic.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199549.WMF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXSLE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-impl.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\vcruntime140.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\libvlccore.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\HLS.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHED98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-back-static.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-threaddump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Invite or Link.one.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\TitleButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACCESS12.ACC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\appletviewer.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACEDAO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\glow.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp	winhost.exe
File created	C:\Program Files\7-Zip\Lang\is.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\xmlrwbin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONELEV.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-services.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css	winhost.exe
File created	C:\Program Files\Mozilla Firefox\qipcap64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgaussianblur_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\PreviousMenuButtonIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-api.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\WindowsAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_SlateBlue.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\keytool.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR00.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_few-showers.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALENDAR.DPV	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\javaws.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21302_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libgestures_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\SmartTagInstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\cs-CZ\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSWORD.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterToolTemplates.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\glass_lrg.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSCOL11.PPD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IPOLK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\38.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\41.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\search_background.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Garden.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+6	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Denver	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Moscow.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRdIF.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\GRAY.pf	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0291984.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_display_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\kcms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0230876.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSProxy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RSPMECH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jp2iexp.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCOLKI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTES.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDCAT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmicrodns_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Moncton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyScenesBackground_PAL.wmv	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Filters\msgfilt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESEND.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME38.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\RECOVR32.CNV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-io.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115843.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_av1_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Singapore	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Accessibility.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\profilerinterface.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libamem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.actionProvider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0305493.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\pt.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\MMHMM.WAV	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\settings.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR19F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\elevation_service.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CNFNOT32.EXE	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\el.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-progress-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME24.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ar.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\SubsetList\Client.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sampler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285926.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUOPTIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jconsole.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EMABLT32.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_shared.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ContactSelector.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14845_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\liblogo_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15035_.GIF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sk.pak	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-next-static.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\DBGHELP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN082.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee90.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fontconfig.bfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Sofia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_read_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\pipres.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL103.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_MoveDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PEOPLEDATAHANDLER.DLL	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nn.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Installed_schemas14.xss	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.STD	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\logs\maintenanceservice-install.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONMAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MAPISHELLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeLinguistic.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DVA.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Temp\GUM2396.tmp\GoogleUpdateSetup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_thunderstorm.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME12.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\row_over.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ug.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Winnipeg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Graph.emf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\WISC30.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Classic.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSORES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\instrument.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECREC.CFG	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupiconsmask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-hot.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javafx-iio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nipigon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14515_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_h.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN105.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\librtp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromaprint_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115836.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_fr.dub	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL082.XML	winhost.exe
File created	C:\Program Files\Java\jre7\lib\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msdaprst.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\VVIEWRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt55.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusDoNotDisturb.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_ja.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\2d.x3d	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONLNTCOMLIB.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-tabcontrol.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21421_.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Thawte Root Certificate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\en-US\sbdrop.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\excel.exe.manifest	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\attention.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14538_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21315_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\invalid32x32.gif	winhost.exe
File created	C:\Program Files\Java\jre7\bin\WindowsAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Net.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10335_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPLTMPL.CFG	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libvc1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14581_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOC.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME16.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0304933.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsnor.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_rest.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\ResourceInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\CHICAGO.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\21.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-previous-static.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\mainscroll.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx	winhost.exe
File created	C:\Program Files\JoinFind.mpe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL104.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libedgedetection_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Background_QuickLaunch.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLNOTE.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7fr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Fortaleza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OMML2MML.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301076.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSStr32.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Bibliography\BIBFORM.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Fancy.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS	winhost.exe
File created	C:\Program Files\7-Zip\Lang\kk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Music.emf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OSetupPS.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jfxmedia.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\my\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\stop_collection_data.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\TableTextServiceSimplifiedShuangPin.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEWSTR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14801_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-outline.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\de.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18194_.WMF	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ALERT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sendopts.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\background.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\button-highlight.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\TRANSMRR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL087.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TaxonomyControl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationTypes.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-CN.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\MAPISHELLR.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18224_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-CN.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\Parity.fx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21433_.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10336_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21375_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18197_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ms.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiling.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCNPST32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA000C.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.VisualC.STLCLR.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ast.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TAG.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCWIZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnWD.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OSPP.VBS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR39F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR23F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\new-trigger-wiz.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR24F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS10TARG.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\EUROTOOL.XLAM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\bin\t2k.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\tpcps.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxerror.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\spacebackupicons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGNHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDCNCL.CFG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\Xusage.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PSTPRX32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR36B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\PhotoBase.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\WindowsAccessBridge-64.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-heapdump.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImages.bmp	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_thunderstorm.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_issue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateCore.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0336075.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\3082\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS4BOXES.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_received.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\shatter.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\uk.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color32.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GKWord.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMAN.TXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\classes.jsa	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\LICENSE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ospintl.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB5B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\TestUpdate.MTS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\gu.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\offset.ax	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\serialver.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ro.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ca.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dial.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT632.CNV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE.HXS	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\PUSH.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME33.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santarem	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Luna.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PICTIM32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_flyout.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Midway.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ml.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+4	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092334.pma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18231_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS53BOXS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LINEACT.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Speech.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_file_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSClient.Msg.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.HK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cuiaba	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Interface.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte18_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libextract_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART1.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\10.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_settings.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\weblink.api	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jabswitch.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Synchronization.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART11.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21323_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21505_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIPC.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\DRUMROLL.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\hprof.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149407.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\ODBC.SAM	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXE8SharedExpat.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALSO98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcanvas_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\vlc-cache-gen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssv.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_cloudy.png	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAProjectUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14515_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msdaprst.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\WIND.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libamem_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_notes-txt-background.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css	winhost.exe
File created	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\Microsoft.stdformat.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javaws.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Manaus	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libpanoramix_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Belem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME45.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWCUTLIN.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\networkinspection.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_foggy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\WMPDMC.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233018.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15035_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\idlj.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Flash.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\sk-SK\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\lgpllibs.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\precomplete	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libchorus_flanger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\3.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR37F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL086.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\prism-d3d.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300840.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME19.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mspub.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libuleaddvaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_snow.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.actionProvider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL98.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\service.js	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\Messenger.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\dkjson.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile_drop_shadow.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR18F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183290.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DVDHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.Blueprints.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_mosaic_bridge_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\dkjson.luac	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeXMP.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONLNTCOMLIB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mng.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\MANUAL.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libfluidsynth_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_matte.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Creston.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216724.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\INTLDATE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-windows.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18245_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInAcrobat.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-impl.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_dummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\gmail.crx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup-impl.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME26.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL011.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\IPIRM.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\ColleagueImport.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACETXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222019.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SOA.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActions.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Nome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmicrodns_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmprph.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\is.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EntityDataHandler.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-middle.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-snaptracer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\PMAILEXT.ECF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14982_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-lib-uihandler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212661.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPM.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ATPVBAEN.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\BCSLaunch.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL081.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.DPV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ne.txt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CT_ROOTS.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\CHEVRON.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerConstraints.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Stars.htm	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\da.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_down.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-api.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.DPV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-5	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234657.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15172_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-services.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\rss.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OCRHC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.SYD	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\external_extensions.json	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.DPV	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-overlay.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-7	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libequalizer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libmft_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLMAIL.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.SYD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ml.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jdb.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ktab.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css	winhost.exe
File created	C:\Program Files\UnblockTest.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BULLETS.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsmb_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\blocklist.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XML2WORD.XSL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB7.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sa.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hovd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21421_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_ja.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.hyp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\misc.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-plaf.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libgestures_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR20F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIB.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Anchorage	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\DELIMR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\msproof7.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIPC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212957.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jdwp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSAutogen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\idlj.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunmscapi.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115868.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\nn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-CN.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.RSD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\Welcome.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_rest.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\SaslPrep\SaslPrepProfile_norm_bidi.spp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51B.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Accra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL110.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15023_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21533_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Makassar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15021_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\zh-cn.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Edmonton	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoDev.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-remote.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX2.ECF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART15.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONLNTCOMLIB.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\prism-d3d.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libstats_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18229_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRdIF.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Gaza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\java.policy	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-14	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ALERT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VVIEWER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_dummy_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL020.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_pressed.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Routing.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\updater.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can129.hsp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\d3d9\libdirect3d9_filters_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONBttnOL.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JAWTAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_LightSpirit.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ja.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es-419.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_200_percent.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\ResourceInternal.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1254.TXT	winhost.exe
File opened for modification	C:\Program Files\ConvertFromAdd.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\5.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\Content.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\js\calendar.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\7.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXPSRV.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\GWE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-It.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.ths	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromecast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\splashscreen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers	winhost.exe
File created	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\notification_helper.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBPQT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libt140_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\LINES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR4B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.DPV	winhost.exe
File created	C:\Program Files\7-Zip\Lang\en.ttt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21321_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRAPH.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadcfr.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\flyout.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183168.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyScenesBackground.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\VideoLAN Website.url	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\8.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CROATIAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ContactSelector.ico	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Omsk	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_orange.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21535_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Regular.otf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14828_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\ACWZTOOL.ACCDE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FRENCH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.Client.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ktab.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+3	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115842.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR28F.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mousedown.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASK.CFG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\icudtl.dat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\36.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\EPSIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-BoldOblique.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\lt.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\TOOT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1046\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_rainy.png	winhost.exe
File created	C:\Program Files\Java\jre7\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_m.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\QuickTime.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\et.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\submission_history.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\UrbanFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\30.png	winhost.exe
File created	C:\Program Files\Java\jre7\bin\javacpl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\resources\1033\Synchronization.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdmo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\local_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Javascripts\JSByteCodeWin.bin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\SETUP.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IPIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_dot.png	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\jnwppr.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\icon.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115834.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR18F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_highlights_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSTORES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_CopyNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll	winhost.exe
File created	C:\Program Files\NewRename.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Inuvik	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSLoc.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ps.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Roses.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX8.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\Welcome.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jhat.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21335_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Asuncion	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\en-US\sqlxmlx.rll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\spu\libmosaic_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\FAX\UrbanFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\msdatasrc.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\LASER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FBIBLIO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSClientManifest.man	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sr.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Seoul	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\gu.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SOCIALCONNECTOR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_am.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx	winhost.exe
File created	C:\Program Files\7-Zip\Lang\an.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1STAR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18218_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Fortaleza	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\NAME.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jmx.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115836.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\ConnectSelect.dib	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\console_view.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libchorus_flanger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hu.pak	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\STSLISTI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.KR.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.Adapter.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\travel.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL010.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvc1_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\docs.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\blacklist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\HST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.Blueprints.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfr.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ogalegit.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\en-US\msader15.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\kcms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Budapest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\psfontj2d.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\adobepdf.xdc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\az.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt	winhost.exe
File created	C:\Program Files\7-Zip\Lang\zh-cn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL020.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.STD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\w2k_lsa_auth.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14538_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DESKSAM.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-oql.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-output2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB6.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Core.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Windows.Presentation.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\3082\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\bn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\1033\FPEXT.MSG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdrawable_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_ja.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\MDIParent.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-remote.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\203x8subpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS53BOXS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostName.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-filesystems.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\en-US\msdasqlr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14711_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSRuntime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SBCGLOBAL.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTFORM.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msdaps.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionMember.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsvorepository_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-BR.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\TRANSMGR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\AdobePDF417.pmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0158007.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sampler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac	winhost.exe
File opened for modification	C:\Program Files\ConnectExpand.ADTS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OFFOWCI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Discussion.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudiobargraph_a_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.Activities.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN108.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Soft Blue.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7en.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSRuntime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-synch-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\axvlc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\VideoWall\videowall.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Monaco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search.api	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\ENUtxt.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\uk.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationUp_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Common Files\System\MSMAPI\1033\MSMAPI32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Chagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302953.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JavaAccessBridge-64.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\snmp.acl.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0217698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\skin.dtd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DOTS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\uninstall.log	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoDev.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\js\slideShow.js	winhost.exe
File created	C:\Program Files\Java\jre7\bin\plugin2\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected]	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB_EURO.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21480_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_m.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_down.png	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\blocklist.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS_DocLib.ico	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostName.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL110.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jli.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libtimecode_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\promointl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME49.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196374.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14997_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nb.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_nv12_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Memo.jtp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OISINTL.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\info.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nb.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR27F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196164.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\enu-dsk\M1033DSK.CRT	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\St_Johns.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javafxpackager.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL058.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libtextst_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\jnwmon.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR41F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.BR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_Off.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-13	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0185604.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0302827.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lt.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUDIOSEARCHSAPIFE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_fr.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL082.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.DynamicData.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR22F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\WMPMediaSharing.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libimem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\Data1.cab.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-8.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\1.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1STAR.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\ACCOLK.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ext.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\perfcore.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR23F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansDemiBold.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\12.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-annotations-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OIS.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL026.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN097.XML	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_avi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\libEGL.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JdbcOdbc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME30.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZCARD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL096.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusAway.ico	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\MSMAPI\1033\MSMAPI32.DLL	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Aero.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ku-ckb.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\15.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\jfr\profile.jfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XIMAGE3B.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AD98.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sl.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXSEC32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME06.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\platform.ini	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jsadebugd.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\meta-index	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-1	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-10	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\winamp2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationRight_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME47.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Conversion.v3.5.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\hprof-16.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR43F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolImages16x16.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\gu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15155_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18237_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ar.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14692_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME08.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL11.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down_BIDI.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\tnameserv.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14578_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-impl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB4.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18204_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libtcp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.HK.XML	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_extractor\libarchive_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sr-spl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_h.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msadomd.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfxrt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\updater.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOT.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA0009.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL016.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateBroker.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSN.ICO	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0187423.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostTitle.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_http_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libreal_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSSOAP30.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jpeg.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MCPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_tr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONTAB32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-remote.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\WriteMerge.mp4	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\FLASH.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\pdmproxy100.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.DE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\deploy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfig.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREQ.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Yakutat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-desk.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpsychedelic_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\SmartTagInstall.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL092.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195812.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmod_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSRuntimeUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\wsdetect.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sw.pak	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Godthab.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\jhall-2.0_05.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME29.CSS	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\blackbars80.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Thule.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MML2OMML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\WANS.NET.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dt_socket.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\ssvagent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\java.security.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe Root Certificate.cer	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Extensions\external_extensions.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_kn.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\COMPUTER.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libposterize_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWORIENT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-vertical.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginDialogBackground.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\jvm.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSGR3EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTES.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\RedistList\AssemblyList_4_extended.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\he.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODDBS.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AssemblyInfoInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MLSHEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\settings.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\alertIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXEV.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.MMW.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART3.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\Real.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\libxml2.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18219_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7en.kic.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\OARPMANR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\common.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\ImagingDevices.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\STSCOPY.DLL	winhost.exe
File created	C:\Program Files\ConfirmExport.jtx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\YEAR.XSL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAClientPkgUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUOPTIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-api-caching.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ContactPicker.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Help\en_US\Adobe Reader\9.0\helpmap.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-image-mask.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21520_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15073_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\currency.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\mshwLatin.dll.mui	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\AddIns.store.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14655_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\InkWatson.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\MSInfo\en-US\msinfo32.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\t2k.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\Documentation.url	winhost.exe
File opened for modification	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\en-US\MSTTSLoc.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18246_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glass.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\CET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_a52_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\2.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\El_Salvador	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d11_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-progress.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\highlight.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURL.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\uninstall\helper.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_all.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libscreen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18192_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\PPSLAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.JP.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCFU.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\SIST02.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPTIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroTextExtractor.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\CLICK.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\back_lrg.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can.fca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\en-US\sqloledb.rll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jfr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\HST10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Onix32.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-search.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-output2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\servertool.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Athens	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml	winhost.exe
File created	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\d3d11\libdirect3d11_filters_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.swf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\TURABIAN.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\librotate_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OLKFSTUB.DLL	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAProject.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\MMHMM.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\precomplete.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblend_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SHAREPOINTPROVIDER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down_BIDI.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR38F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libkate_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14531_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\PAB.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIB.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-explorer.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME40.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-util-enumerations.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1040\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\cloud_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IPIRMV.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libextract_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-dialogs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaw.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199727.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.DesignTime.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10263_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21312_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\INLAUNCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyNotesBackground_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RSWOP.ICM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\da-DK\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL078.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSTORYVERT.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-print.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21366_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR27F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaribsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\odffilt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\42.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\XmlFile.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\IPDSINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\6.png	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\sentinel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_ja.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_m.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Search.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\SY______.PFB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Montreal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONWordAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\WPGIMP32.FLT	winhost.exe
File opened for modification	C:\Program Files\ImportUse.vdw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libqsv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME20.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libt140_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\DisabledGoogleUpdate.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-uihandler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL097.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\da.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR26F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME08.CSS	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-keymap.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18237_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONTAB32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_smem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_up.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.Server.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_same_reviewers.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BlackRectangle.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dts_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JavaAccessBridge-64.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\TALK21.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AR.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21413_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\main.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_snow.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-dayi.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonInset_Alpha1.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0304933.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\msdbg2.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME21.CSS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21335_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LETTHEAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_read_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_received.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\ColleagueImport.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21321_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR36F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHOME.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL089.XML	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fi-FI\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14757_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\css\cpu.css	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0214098.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBE7INTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWRECE.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\blacklist	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BCSStr32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18182_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatialaudio_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAMECONTROLPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sendopts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\ACT3.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME31.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BDRTKFUL.POC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hwrenalm.dat	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\TOOLICON.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PS9CRNRH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN075.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\drive.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10337_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR34F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can03.ths	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\en-US\PhotoAcq.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_livehttp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutDomain.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EAWFINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextServiceAmharic.txt	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoDev.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\npt.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTEL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\STSUCRES.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\rtscom.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE.MANIFEST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvmem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ieinstal.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Easter.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300912.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Visualizer.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ro.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Init.xsn	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDBAR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libaribcam_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR22F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODBC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL095.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18228_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_pt-PT.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Apia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15060_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301050.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301050.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\updater.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-disable.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Madrid	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONGuide.onepkg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR39F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\npt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_copy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\picturePuzzle.css	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\vi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10308_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\LASER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_sun.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\br.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Eirunepe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\WMPMediaSharing.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15277_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Madrid.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0215086.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\gstreamer-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10335_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0215086.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14830_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-iio.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\AssemblyInfoInternal.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\server\Xusage.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CharSetTable.chr.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.XML	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\AdobePiStd.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14833_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21312_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSLoc.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmagnify_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_thunderstorm.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14711_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libexport_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115864.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Simple.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-iio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTS.ICO	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1258.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21377_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\zipfs.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBCONV.DLL	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nn.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-shadow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d9_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\invalid32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\libvlc.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up_BIDI.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECL.ICO	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\time-span-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\sandbox.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\application.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libmmdevice_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\install.log	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_On.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libhttp_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\BUZZ.WAV	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\settings.ini	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\WindowsFormsIntegration.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sk.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_tr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\37.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hwrcommonlm.dat	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java_crw_demo.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORM98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACCVDTUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\librotate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Oblique.otf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\NETWORK.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIB.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-progress-ui.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierCloseButton.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.VisualC.STLCLR.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-9	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR14F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSRTEDIT.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL102.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaSansRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\WatchFormat.wmf	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\tesselate.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\alert_obj.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\management\jmxremote.access.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ru.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_windy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-dialogs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsplk.xml	winhost.exe
File opened for modification	C:\Program Files\GroupBackup.ppsx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18235_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\Microsoft.Ink.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL108.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Sydney.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SOA.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa03.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCH.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21534_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\19.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21310_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\REPTWIZ.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libpanoramix_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Shorthand.jtp	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Oblique.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\IEAWSDC.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ba.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.INF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libwave_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\bl.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15056_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPLTMPL.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115844.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jps.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Seyes.emf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvSOFT.x3d	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Peacock.jpg	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hr.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Trans_Scene_PAL.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0185604.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLJRNL.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR36F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR8B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR41F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_file_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL048.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\ExpandFormat.vb	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lv.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\grid_(cm).wmf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\MMSL.ICO	winhost.exe
File created	C:\Program Files\Mozilla Firefox\msvcp140.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME53.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\ODeploy.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OMML2MML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18217_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jmx.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292152.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\weather.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvSOFT.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zCon.sfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RSPMECH.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\0.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Guam.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR26F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OFFRHD.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\LICLUA.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.TW.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\css\calendar.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WCOMP98.POC	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR38F.GIF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\whitemask1047.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fontconfig.bfc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\INFOML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BDRTKFUL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\appletviewer.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14711_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\LogoBeta.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Eurosti.TTF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\librv32_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\nl.pak	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libafile_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21348_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREETING.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-BoldIt.otf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.SharePoint.BusinessData.Administration.Client.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-3.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPTINPS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15020_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.Client.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\weblink.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\chrome.VisualElementsManifest.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZFORM.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\info.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Installed_schemas14.xss.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\ConnectSelect.dib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jpeg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACWIZRC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_pitch_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OFFREL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack200.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msadcer.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\gui\libskins2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\slideShow.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PG_INDEX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-lib-uihandler.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1XTOR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME41.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\preloaded_data.pb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18209_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-util.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\slideShow.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21340_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OFFXML.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_left.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipscsy.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-10	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\sunec.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\librawaud_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\HORN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-3	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\kab.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.PH.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_m.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UTC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME39.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l1-2-0.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msdaprsr.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGLISH.LNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14595_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR32F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_s.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18193_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18236_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14982_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\msvcp140.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libstereo_widen_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_K_COL.HXK	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-11.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MYSL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-font.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\cursors.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115855.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javaws.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\FLTLDR.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)redStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\flavormap.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18246_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\js\common.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0215086.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javaws.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98SP.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\4.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\form_responses.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Sand_Paper.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235241.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mouseover.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN044.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Folders\MSOSV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\content-types.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARDHM.POC	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\java.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SendMail.api	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\LOOKUP.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\4.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateHelper.msi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14513_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDFFile_8.ico	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEOLEDB.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEM.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_glass_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Moscow.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libddummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Services\verisign.bmp	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Monterrey	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABELHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RESUME.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OSETUPUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libinflate_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)alertIcon.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Dili.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.TH.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCNPST64.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_super.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Taipei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18192_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ASCIIENG.LNG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORM98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected]	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_en.dub	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\MEIPreload\preloaded_data.pb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18255_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME51.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_SelectionSubpictureB.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Athens.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15061_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_altgr.xml	winhost.exe
File opened for modification	C:\Program Files\desktop.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212701.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\GREEK.TXT	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\pipanel.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\slideshow_glass_frame.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\selection_subpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCDDSUI.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7wre_es.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157995.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLBAR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10307_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14791_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\npt.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCFU.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.AddIn.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-favorites.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libfingerprinter_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR29B.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ALRTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24Images.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblend_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Halifax.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Resource.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationLeft_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CNFNOT32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.Infopath.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR51F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\HxRuntime.HxS	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAME.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordcnvpxy.cnv.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\libEGL.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\an.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadcor.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Resolute.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301076.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPERSON.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libcaca_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_Buttongraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ur.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODDBS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-dialogs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Inuvik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_it.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21339_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14532_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-options-api.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1XTOR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293570.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DISTLSTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SPANISH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_wasapi_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Resolute.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCAL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN102.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233312.WMF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_150.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21495_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Garden.htm	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DBGHELP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195534.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14531_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\oeimport.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ConvertToSync.m3u.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-loaders.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240695.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\SwitchTest.dwfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatializer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libsdl_image_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-io-ui.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\net.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libps_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\hprof.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15056_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\TextConv\WksConv\Wkconv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceoledb35.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGNHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\MSTTSFrontendENU.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18206_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\AddIns.store.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.ComponentModel.DataAnnotations.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLRPC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_select-highlight.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-search.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-nodes.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ml.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Internet Explorer\SIGNUP\install.ins.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TEAROFF.POC	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\SPPlugins\ADMPlugin.apl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstat.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTLVBA.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libgme_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\README.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\visualization\libglspectrum_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15275_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionMember.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME44.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212701.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineIdle.ico	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libwall_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cayenne	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ja.pak	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\libGLESv2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\setup.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\winamp2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\zip.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multiview.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fr.pak	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN044.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\warning.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CYRILLIC.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240719.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME41.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21308_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\connectionmanager_dmr.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Midway.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18249_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\update-settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL111.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multiview.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\dnsns.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18210_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSACC.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libamem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libpanoramix_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_top_left.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\master_preferences	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCHUR11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-attach.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14539_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDCAT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MSTHED98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\nssckbi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\readme.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_heb.xml	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\gl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Dotted_Lines.emf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Ojinaga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1036\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_few-showers.png	winhost.exe
File created	C:\Program Files\7-Zip\7-zip32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tipresx.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48F.GIF	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7-zip32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\fontmanager.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\cmm\PYCC.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OneNoteSyncPCIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR10F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OLKFSTUB.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\PROCDB.XLAM	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\jni.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\README.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\micaut.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-localization-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\keypadbase.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\fxplugins.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Rainy_River.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows NT\TableTextService\en-US\TableTextService.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-keymap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POST98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-util-enumerations.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Rome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\LOCALDV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpsychedelic_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_TexturedBlue.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\NAMECONTROLPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL093.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\7.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\wabimp.dll	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Toronto	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\digest.s	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml	winhost.exe
File opened for modification	C:\Program Files\ConvertToSync.m3u.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_underline.gif	winhost.exe
File created	C:\Program Files\7-Zip\History.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\vi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\hprof.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\1.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\BCSRuntimeRes.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over_BIDI.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTL.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwasapi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Blue_Gradient.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-api-caching.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090070.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\add_reviewer.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-compat.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ACCOLKI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Connectivity.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GRAPH.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\button.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\localedata.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mpjpeg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_divider_right.png	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1036\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\xmlrwbin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-spi-actions.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\CAMERA.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libequalizer_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-disable.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FDATE.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0221903.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Dotted_Line.jtp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTORE.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\6.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.SE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\pack200.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ROMANIAN.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1036\MSO.ACL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15021_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\COUGH.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293240.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QUIKPUBS.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.service.exsd	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Hebron.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIP.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-applemenu.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN097.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACETXT.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTE.CFG	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssLogo.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Gradient.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_udp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_shared.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GR8GALRY.GRA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\settings.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libattachment_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\oeimport.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\timer_up.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300912.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0281904.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\bg_sidebar.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\3.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.DOC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lt.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-CN.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Chicago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ModifiedTelespace.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49B.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\JFONT.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-dock.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libgoom_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msadomd28.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234266.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\SYMBOL.TXT	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\MpClient.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvc1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Skins\Revert.wmz	winhost.exe
File opened for modification	C:\Program Files\NewRename.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadds.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21301_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYVERTBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14844_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPTIRMV.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0297551.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.JP.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SLINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL086.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\librotate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-output2.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\30.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\qipcap64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)greenStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\ucrtbase.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+10	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Toronto.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSCOL11.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18216_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ACT3R.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10265_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\FAXEXT.ECF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.DE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_INTRO_BG.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mp4_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14984_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\FDFFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\hu-HU\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\javafx.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1252.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Tools.Applications.DesignTime.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Caracas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\IA2Marshal.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART14.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdrawable_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\blank.jtp	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21308_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10358_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFS.ICO	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_disabled.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART5.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME03.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ADRESPEL.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-synch-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\mr.pak	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fa.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\bg_sidebar.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\wab32res.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\server\jvm.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee100.tlb	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\warning.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\subscription.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\GREEK.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_es.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\WET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18250_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_cs.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\decora-sse.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21304_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR30F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libd3d11va_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0229385.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CLVIEW.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-progress.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART9.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL001.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR16F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\stdole.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.XML	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ne.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14582_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME14.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Modern.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-favorites.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\PMAILEXT.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Synchronization.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked-loading.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-changjei.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7wre_fr.dub	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CASHREG.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\ended_review_or_form.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javadoc.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\vlc-cache-gen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpSvc.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Internet Explorer\SIGNUP\install.ins.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\720x480icongraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Thatch.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\GRAPH.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaosp.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3F.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\de.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18227_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Iqaluit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\CHIMES.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sa.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21309_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatialaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\dotslightoverlay.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.metadataprovider.exsd	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansDemiBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationRight_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSMMS.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\cs.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VISSHE.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_sun.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\nb.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Paris	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10R.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\History.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMSS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKUPD.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL026.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\README.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21313_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\TURKISH.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL106.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\ShapeCollector.exe.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_pressed.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14793_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\es.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\plugin2\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18220_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked-loading.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART9.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21342_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libremap_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21375_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ogalegit.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\XDPFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7z.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14870_.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\nssckbi.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME02.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7tkjp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\SERVWRAP.ASP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-It.otf	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Royale.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\MSOHTMED.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL111.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHKEY.DAT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNOteFilter.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Photo Viewer\PhotoAcq.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_rest.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\kinit.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsdp_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcf.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Genko_1.emf	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-javahelp.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordconv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACERECR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\CLVWINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.ini	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.STC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAME.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadce.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\distribute_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\Management.cer	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\jaccess.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WWINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10263_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18191_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PRTF9.DLL	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\br.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\enu-dsk\M1033DSK.APL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Issue Tracking.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\penkor.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\ReachFramework.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21344_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\updater.ini	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\24.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-loaders.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\j2pcsc.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTOC.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR16F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdirectory_demux_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XML2WORD.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Regular.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ar.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterApplicationDescriptors.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.OPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\library.js	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Havana	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\ODBCR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe.sig	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAClientPkg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\TRANSMGR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Explorer.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\correct.avi	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21505_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Person.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292152.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Cairo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBAR11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\zdingbat.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_vi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\mshwLatin.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\pdm.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\xjc.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\io.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18189_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART11.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\search_background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-annotations-common.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21304_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_US_POSIX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SplashScreen.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libsubsdelay_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-back-static.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgaussianblur_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup-impl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EntityDataHandler.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusAway.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-nodes.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR37F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\update-settings.ini	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSProxy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MLCFG32.CPL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21370_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jp2native.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR34F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libkaraoke_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_thunderstorm.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\java.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\SYMBOL.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\StatusOnline.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14753_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN020.XML	winhost.exe
File opened for modification	C:\Program Files\RemoveResume.asp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216588.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME12.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_F_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\ReachFramework.dll	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_ok.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_shout_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmpshare.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Wake	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\PDDom.api	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1655.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN107.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\en-US\msoeres.dll.mui	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21318_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroSign.prc	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_bg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PublicAssemblies\System.AddIn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-api-caching.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\LoginForm.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessData.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\GIFIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CGMIMP32.HLP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14529_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ta.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN075.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_settings.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MYSL.ICO	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\day-of-week-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaSansRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18234_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_ring_docked.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.cpl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLNOTE.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODBC.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SegoeChess.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\vdk150.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149887.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libheadphone_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sk.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21370_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286068.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa37.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Small_News.jpg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\deployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\AMERITECH.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\InkObj.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64_3.103.1.v20140903-1947.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149407.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18185_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_udp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\tl.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-outline.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\javaws.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fxplugins.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART13.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPAPERS.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\9.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18203_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14529_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL089.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREETING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\en-US\sqloledb.rll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESP.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte18_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nassau	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL027.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18201_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADVTEL.DIC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.PL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pt-PT.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-javahelp.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10307_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL075.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.service.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332268.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2iexp.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Almaty.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196400.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR32F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\br.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONTACTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR2B.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-compat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FRENCH.LNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-filesystems.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\VVIEWRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SENDTO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-core-kit.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\UKRAINE.TXT	winhost.exe
File opened for modification	C:\Program Files\JoinStop.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME39.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCNPST64.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\UserControl.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14579_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libball_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.XML	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_rightarrow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JavaAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14794_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Dawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\npjp2.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10289_.GIF	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libedummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_docked.png	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18208_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\nio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21329_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL096.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRINTL32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcor.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18205_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_es.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierUpArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_display_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15058_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CDLMSO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14594_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.exe.sig	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEEXCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-2.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\ehshellLogo.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIPMASK.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_lg.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBTRAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkNoDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\info.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\rmiregistry.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL012.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glib-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\InformationIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jvm.hprof.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\localizedStrings.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libglwin32_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\EnableEnter.php.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmono_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18230_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SAMPLES\SOLVSAMP.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\pdf.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\kn.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ku-ckb.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_leftarrow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\bdcmetadataresource.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14514_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\FindTrace.vstm	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME06.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\CENTEURO.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1036\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files\ExpandFormat.vb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157763.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21316_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\THOCR.PSP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Easter.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libchain_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_m.png	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sr-spl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\eventlog_provider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\native2ascii.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\BREEZE.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\msproof7.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_nv12_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Shared24x24Images.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zx______.pfm	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\setup.swf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\STSLIST.CHM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XLCALL32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Visualizer.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Guyana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OLKFSTUB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\servertool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Manaus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\DOCS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21480_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14882_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSACCESS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBEMAIL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-services.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-windows.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\rmid.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7es.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multitabs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\librtp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_th.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLINTL32.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\adodb.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199283.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\FAX\OrielFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\Microsoft.mshtml.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ExtExport.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dubai	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLMAIL.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\EUROTOOL.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PAPERS.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NL7MODELS0009.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\ODeploy.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115840.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mp4_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Response.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ContactSelector.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\sunec.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SNET.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_bottom.png	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_te.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\glass.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18210_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR4B.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sv.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\handler.reg	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\9.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Oslo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\rtscom.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_left.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RSPMECH.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1049\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-javahelp.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OFFLINE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatializer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_it.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\prism-d3d.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0252349.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\JSProfilerCore.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-settings.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15171_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\kinit.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-applemenu.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149887.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.DynamicData.Design.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\MSBuild\Microsoft.Office.InfoPath.targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\CopyDisconnect.pub	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\w2k_lsa_auth.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSEngine.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX9.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Eucla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONTAB32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWRECE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\modules\httprequests.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\wsdetect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14691_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LINEACT.POC	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\MDIParent.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOMessageProvider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.NO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\java-rmi.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\UserControl.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14829_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\WARN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\8.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME51.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCINFO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB_EURO.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Maputo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote-PipelineConfig.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter.png	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\SIGNUP\install.ins.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\SUCTION.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BANNER.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLMACRO.CHM	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw32.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\THOCR.PSP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299587.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21296_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14833_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTEAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jp2launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21314_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipssrb.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21338_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libinvert_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotiondetect_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14981_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-lib-uihandler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21512_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInTray.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_rest.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_email.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSAEXP30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\vi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUOPTIN.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\sonicsptransform.ax	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR6B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\eula.rtf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackground.jpg	winhost.exe
File opened for modification	C:\Program Files\CopyDisconnect.pub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_received.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME22.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_stats_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-common.xml	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\jsprofilerui.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SCANPST.EXE	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-progress.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SketchPadTestSchema.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SETLANG.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_few-showers.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\WHOOSH.WAV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREET11.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\rollinghills.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14828_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7en.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RSWOP.ICM	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpenc.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-cli.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1040\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_100_percent.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sq.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\otkloadr_x64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\he.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL108.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfig.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SHARING.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBCALSO.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libexport_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-phonetic.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\specialoccasion.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10299_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME03.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME53.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\libxslt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCICONS.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB6.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAProjectUI.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\sunmscapi.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_transcode_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Portal\1033\PortalConnect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OL.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmid.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationUp_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\instrument.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-queries.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGHEADING.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libx264_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CORE.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\kinit.exe	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Guatemala.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\AUTOSHAP.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TipsImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaom_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_joined.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\MakeAccessible.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sk.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-services.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImages.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMASTHD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.UK.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\BTOPENWORLD.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF	winhost.exe
File created	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGHEADING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR10F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10253_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NAMECONTROLSERVER.EXE	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\RELAY.CER	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdrawable_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\WANS.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxerror.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_block_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL107.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME04.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART13.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_LinkDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMES.CFG	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\CodeFile.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLFLTR.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdasql.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ssv.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\default.vlt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es-419.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ba.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18218_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\README.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\javafx.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Desert.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)notConnectedStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME03.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\DESIGNER.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\prism-d3d.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21376_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR23F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL002.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MAIN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WSIDBR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-remote.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SendMail.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Scene_loop.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javaws.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDFFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ta.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\GoldRing.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-BoldOblique.otf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\AUTHOR.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\header.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115875.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\SessionOwner.ico	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInAcrobat.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115856.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.AddIn.Contract.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLMACRO.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB8.BDR	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libhqdn3d_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\3.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSOINTL.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR38F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR30F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\IpsPlugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\SLATE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EAWFINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fa.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\lgpllibs.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\SIGNUP\install.ins.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTL.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIconMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-core-processthreads-l1-1-1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLOGO.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\ICELAND.TXT	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Genko_2.emf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR1F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-dialogs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\F12Resources.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jawt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Antigua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.DOC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN081.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libcaca_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14982_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\AST4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\library.js	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\sound.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\mpvis.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Bissau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\ARROW.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordcnv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VISSHE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPCEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\local_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hu.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBCOLOR.SCM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB7.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_hover.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-spi-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149407.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0187423.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javaws.policy	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWSHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Oral.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_settings.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jfxwebkit.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR5F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\PFM\zx______.pfm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14883_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR40F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\modules\httprequests.luac	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_socket.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299587.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18204_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javap.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN082.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-nodes.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\EUROTOOL.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\en-GB.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-util-enumerations.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_on.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\adojavas.inc	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21413_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FOLDPROJ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\FLASH.NET.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Esl\AiodLite.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21343_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\si.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\OliveGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR13F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.HK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\jsprofilerui.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10263_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FiveRules.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\te.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STRBRST.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ModifiedTelespace.ico	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21376_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\StopIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\VBE6EXT.OLB.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\WTSP61MS.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART7.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME05.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\it.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\32.png	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected]	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\index.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\mlib_image.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.cpl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\APPTS.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\acro20.lng.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SendMail.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-Bold.otf	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Qatar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_udp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\bdcmetadata.xsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot_lrg.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-api.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icucnv36.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR40F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR48F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.NZ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_issue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInAcrobat.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\setup.swf	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\penjpn.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CHIMES.WAV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\Vdk10.rst.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\prc\MyriadCAD.otf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties	winhost.exe
File created	C:\Program Files\Java\jre7\bin\kcms.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14756_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libfluidsynth_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21309_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21324_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\25.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR12F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_foggy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-util.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\LOCALDV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\profilerinterface.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBPAGE.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libmpg123_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\pmd.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javafx-font.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EntityPicker.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.XLS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXLIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcecompact35.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Eirunepe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Microsoft.Synchronization.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java_crw_demo.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\oledb32r.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0335112.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18238_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR42F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\StopIconMask.bmp	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\open_original_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\ONINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\APPLAUSE.WAV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB9.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.msi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\wmpnssci.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21327_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\setting_back.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME33.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\eu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jabswitch.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHD98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\DVA.api	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0278882.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\UmOutlookStrings.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Traditional.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1028\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\RSSFeeds.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR5B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHOME.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_es_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IEContentService.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPCORE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FORMCTL.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXPSRV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\RedistList\FrameworkList.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\34.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\notes-static.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-border.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\oisctrl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFPrevHndlr.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\ReadMe.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\de.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\kcms.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sk.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.HK.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\vi.pak	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_pressed.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.InfoPath.Client.Internal.CLRHost.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_disabled.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18238_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\COPYING.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jce.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205462.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jni.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\RM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\LASER.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR9B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-charts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_file_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN090.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files\Mozilla Firefox\freebl3.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL109.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14578_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14996_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.RuntimeUi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvdummy_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Settings.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\splashscreen.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_ja.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ielowutil.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Help\ITIRCL55.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\MLA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-selector-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VC\msdia90.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CASHREG.WAV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\skin.dtd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMDOS.FAE	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIBUtils.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\XmlFile.zip	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libcompressor_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEERR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\dt_socket.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASK.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application-views.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME01.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR25F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.BusinessApplications.Runtime.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\83.0.4103.106.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RESENDL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ar.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Custom.propdesc	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QRYINT32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\JFONT.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-attach.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.NO.XML	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee100.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SOCIALPROVIDER.DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\WindowsMedia.mpp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN002.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_extractor\libarchive_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\OliveGreen.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR27F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.IN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdxva2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\TextFile.zip	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18223_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7wre_en.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FS3BOX.POC	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\osclientcerts.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Couture.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\15x15dot.png	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MSASCui.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Earthy.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEML.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN048.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCTBOX.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierCloseButton.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libskiptags_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\validation.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\submission_history.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR33F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft.Office.InfoPath.targets	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-previous-over-select.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14513_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21533_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\weather.html	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AboutBox.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14844_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_is.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ExpandFormat.vb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWCUTCHR.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fontmanager.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18213_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-templates.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.descriptorProvider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OART.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationRight_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Mozilla Firefox\crashreporter.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\VOLTAGE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1042\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javacpl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART4.BDR	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\zh-TW.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ku-ckb.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_zh-TW.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Extensions\external_extensions.json	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSRTEDIT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-applemenu.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15073_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.ibm.icu_52.1.0.v201404241930.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GRAPH_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU98.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\vstoee100.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToScenesBackground.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\localedata.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ar.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterBold.ttf	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Dubai.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RES98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL058.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\picturePuzzle.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222017.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-explorer.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwinhibit_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\ReadOutLoud.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\DenyUninstall.rm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jaas_nt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_dot.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL095.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\SETUP.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bg.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-tabcontrol.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msdaprsr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GROOVE_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN096.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\grid_(inch).wmf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10253_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-localization-l1-2-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGMGPUOptIn.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\wsdetect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18214_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Anchorage.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_it.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ENGDIC.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Bears.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\icon.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOInstallerUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Synchronization Services\ADO.NET\v1.0\Microsoft.Synchronization.Data.SqlServerCe.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\NPSWF32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-core-kit.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0240695.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME11.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\vlm.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hi.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\PPSLAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Framework.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaorar.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1036\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\control\libnetsync_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscene_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-ImageMask.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21448_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONGuide.onepkg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system_h.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jpeg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostTitle.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\prc\MyriadCAD.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOffNotificationInAcrobat.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLJRNL.FAE	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\gu.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR41F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0217698.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.PL.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-tabcontrol.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Metlakatla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_rest.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_livehttp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\11.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298897.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\CERTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15276_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21294_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-execution.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ext.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OPHPROXY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18193_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hebron	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\MCIMPP.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLADDR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXCEL.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_concat_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sr-spc.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\flight_recorder.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0149627.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME32.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2B.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\header.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libwall_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AccessWeb\SERVWRAP.ASP	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MAIN.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsdt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Rome	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\acro20.lng	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotionblur_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR20F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL011.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Sign.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_hov.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\STSCOPY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR48F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Synchronization.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\USP10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ca.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\UseOpen.otf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\rmic.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL104.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\WMPNSSUI.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\29.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\policytool.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Windows Sidebar\settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-ui.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticattribute.exsd	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21534_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Fancy.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\Analysis\FUNCRES.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CA.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar	winhost.exe
File created	C:\Program Files\Java\jre7\bin\javafx-font.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-io.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\splashscreen.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285360.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PNCTUATE.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\t2k.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\calendars.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14866_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14532_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Review.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME25.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\MSSPC.ECF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Distinctive.dotx	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\COPYING.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_INTRO_BG_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlcese35.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)greenStateIcon.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GREETING.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR39F.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SELFCERT.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\notification_helper.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-cli.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MENU.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MX.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PEOPLEDATAHANDLER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-favorites.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GRLEX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\ISO690.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OSETUPUI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OLKIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EXSEC32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15274_.GIF	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\uz.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\en-US\msadcer.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\deploy.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\Discussion14.gta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14768_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\STINTL.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ContactPickerIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_fa.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\DiagnosticsTap.dll.mui	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\jsdbgui.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1257.TXT	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWCUTCHR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\AcroForm\PMP\AdobePDF417.pmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21340_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssvagent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0230876.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBCALSO.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SketchPadTestSchema.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_postage_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\SystemV\MST7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\content-background.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\UmOutlookStrings.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\icon.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\settings.js	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\NamedURLs.HxK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_hov.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME24.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MLSHEXT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\id.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libstl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENVELOPE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBOXES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libaribsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmirror_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\MSTTSLoc.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\jmxremote.password.template.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21548_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\VSTARemotingServer.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\INLAUNCH.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\common.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0157763.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\msproof7.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR39F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdirectory_demux_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Colombo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115841.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_VideoInset.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\ParentMenuButtonIconSubpict.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18255_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\misc\libfingerprinter_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\mk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ro-RO\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLADDR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FS3BOX.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\gstreamer-lite.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME53.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Perspective.dotx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\BHOINTL.DLL	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Class.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-charts.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292982.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\VeriSignLogo.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\java-rmi.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\modules\host.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-13.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationProvider.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\1047x576black.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jli.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libsdp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB9.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\validation.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\Alphabet.xml	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7zG.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\invalid32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0292982.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAMEEXT.DLL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21504_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ACCESS12.ACC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART14.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.Design.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\VVIEWRES.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromaprint_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\pack200.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0251925.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\VSTARemotingServer.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\33.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceqp35.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME52.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmpenc.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\Analysis\ANALYS32.XLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateBroker.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterRegular.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18216_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21304_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\librv32_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\pingsender.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mpjpeg_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.PPT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImages.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBSBR.DPV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL103.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-2	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18190_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10337_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmplayer.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fil.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MOFL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\glib-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ast.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\plugin2\msvcr100.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_gather_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\XLSLICER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_hov.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Groove Starter Template.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libremap_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\3082\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15034_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\deployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18215_.WMF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-timezone-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DenyUninstall.rm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15019_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OFFRHD.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\PNG32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.DOC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Tehran.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0211949.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\MSOSEC.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\omni.ja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libmosaic_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\OARPMANR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Bahia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7es.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_windy.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sawindbg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hi.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_s.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\en-US\msdasqlr.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\TOC98.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_left.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Iqaluit	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0284916.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR15F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7FR.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\COPYING.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft.Office.InfoPath.targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300520.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFSigQFormalRep.pdf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212219.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME17.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME34.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\crashreporter.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ja.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NAMECONTROLPROXY.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHKEY.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\wab.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutSyncPC.ico	winhost.exe
File created	C:\Program Files\Mozilla Firefox\dependentlibs.list.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfreeze_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\MSCONV97.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0332364.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libnoseek_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLPERF.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR32F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_concat_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBBTN.XML	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libhqdn3d_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Defender\MsMpLics.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Kiev.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\DataServices\FOLDER.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18199_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_email.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EXCEL_COL.HXT	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1040\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Oslo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\CHICAGO.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_elf.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ENVELOPR.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\TURABIAN.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\local_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\RES98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\th-TH\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kuching.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293238.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCARD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_flyout.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_widescreen_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jsdt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN103.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SNIPE.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPREARM.EXE	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-ui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15060_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNote.gpd	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GostTitle.XSL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libantiflicker_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msdasqlr.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\1033\OFFICE10.MML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\WORDIRM.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXCEL.DEV_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EntityPickerIntl.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR51B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt04.hsp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\amd64\jvm.cfg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Adobe.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\default-browser-agent.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18249_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-uisupport.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15136_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\uninstall.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\17.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0088542.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART14.BDR	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SPLASH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10358_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLMAIL.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-cli.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jp2iexp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR7F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libglwin32_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_bottom_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\US_export_policy.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Halifax	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX8.x3d	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3A.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0304933.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\JoinStop.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Colombo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME38.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d9_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\skins\skin.catalog.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libhttps_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square_s.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14845_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Manuscript.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCOUPON.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_10_p010_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1250.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\default-browser-agent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\Welcome.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QUIKPUBS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)redStateIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21435_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\distribute_form.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\16.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OWSSUPP.DLL	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\STSCOPY.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javah.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mset7tk.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\AccessWeb\SERVWRAP.ASP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner.png	winhost.exe
File created	C:\Program Files\WriteMerge.mp4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fa.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10264_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Soft Blue.htm	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\x86\vsta_ep32.exe.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18237_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2A.BDR	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\jmxremote.password.template	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOCF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libsftp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPTIRM.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.DesignTime.tlb	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\on_desktop\slideshow_glass_frame.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_Off.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-favorites.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\UTILITY.ACCDA	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierWindowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmagnify_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\template.msi	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN110.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PPTIRM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\init.js	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Atikokan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-print.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\spacer_highlights.png	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18247_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImage.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fr-FR\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME21.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\LATIN1.SHP	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sw.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14844_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN002.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_same_reviewers.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21400_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\INVITE11.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10264_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Paramaribo	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\SignHere.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Issue Tracking.gta	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\msaccess.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hi.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-output2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\NL.ROGERS.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\PAB.SAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Response.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBCALSO.POC	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PSRCHLEX.DAT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\UnblockTest.bat	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Checkers.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaora.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-fallback.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPPT.OLB	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Manila	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TAG.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msolap100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR7F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\flyout.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\usa.fca	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Groove.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_left.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_es-419.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_K_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\PUSH.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7EN.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWLAY32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195812.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MIMEDIR.DLL	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoCanary.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mng.txt	winhost.exe
File created	C:\Program Files\7-Zip\Lang\uz.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\curtains.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libyuv_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icucnv36.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Currie	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR33B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XML2WORD.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdater.cer	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\grvschema.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Oslo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15073_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_snow.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.Runtime.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\ENU\VDK10.RSD	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadds.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\HEADINGBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\La_Paz	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdaterInstallMgr.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14753_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_off.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\sunmscapi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\Setup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Swift_Current.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MORPH9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTEL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfoInternal.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft SQL Server Compact Edition\v3.5\sqlceoledb35.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-dialogs.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CSS7DATA0009.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\idlj.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\AdobePiStd.otf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\j2pcsc.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TextConv\Wks9Pxy.cnv	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\DLGSETP.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Installed_resources14.xss.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\OriginFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\WMPSideShowGadget.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyNoDrop32x32.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186002.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Earthy.gif	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libnormvol_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Formal.dotx	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\fonts\TwemojiMozilla.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked-loading.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Nipigon	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdxva2_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\MDIParent.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libremoteosd_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\adodb.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\jfxrt.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMain.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jaas_nt.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\17.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\eo.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\mlib_image.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\cacerts	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.PPT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHDHM.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDREQS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\logsession.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1041\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMAIN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationRight_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18212_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\DirectDB.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOMessageProvider.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\dtplugin\deployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKREQL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\corner.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pl.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Manila.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfps_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7cm_es.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_dot.png	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSansBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Barbados	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WITHCOMP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\USP10.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Americana.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\he.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\otkloadr_x64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDRESP.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Library\SOLVER\SOLVER.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14514_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_rest.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_cloudy.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\203x8subpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\cursors.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\DBGHELP.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RSSITEMS.ICO	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\sunec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21399_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SegoeChess.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL096.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\VVIEWER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dataset.zip	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsdt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0300840.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\tzmappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CT_ROOTS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\wabimp.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MAIN.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\logger\libconsole_logger_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-loaders.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SlateBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ko.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCHDREST.CFG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Default.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\REMINDER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\HLS.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\library.js	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Web Folders\1033\MSOSVINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\GMT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNS.ICO	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push_item.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSStr32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLR.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.CFG	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092700.pma.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs-nio2.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-uihandler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGLISH.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\eBook.api	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mouseover.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_hov.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\tnameserv.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management-agent.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfo.zip	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bg.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\3082\MSO.ACL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN002.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN102.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SHARING.CFG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OIMG.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACER3X.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\end_review.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Printing.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Chicago	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL054.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Portal\1033\PortalConnect.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGBORDER.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\MDIParent.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainBackground.wmv	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Csi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SOCIALCONNECTORRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\3.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\ext\dnsns.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmad_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21312_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\enu-dsk\M1033DSK.UDT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sampler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-search.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcs.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_wav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\1047x576_91n92.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\SEQCHK10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\jhall-2.0_05.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PAPERS.INI	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\StarterNotificationDescriptors.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21305_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\hu.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR37F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SOCIALCONNECTORRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia\MPP\WindowsMedia.mpp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\net.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QRYINT32.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CNFNOT.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLFLTR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Accessibility.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\OLKFSTUB.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSSOAP30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\security\java.security.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\MST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\es-ES\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\cursors.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libimage_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.CMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\wabmig.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstatd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21364_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Modern.dotx	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-dialogs.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_windy.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\HandPrints.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\MedianFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\3082\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-hot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\UserControl.zip	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bn.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_kn.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\descript.ion	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\de.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECRECL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\pagecurl.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtospdif_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icudt36.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_CopyNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Beirut.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18196_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\librawaud_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\gadget.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-utilities.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\InkDiv.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301050.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fi.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\clock.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\4.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\swiftshader\libEGL.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\splash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\CsiSoap.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21330_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\EnableEnter.php	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liberase_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\eula.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Martinique.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Training.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Prague	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+1.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.ComponentModel.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libclone_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\en-US\wmpnssui.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15170_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\v8_context_snapshot.bin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-templates.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\EET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPIR.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.DLL.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files\MoveImport.vbe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-Bold.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MLSHEXT.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.AR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JAWTAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14582_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21308_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\libaudiobargraph_v_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBHED98.POC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Notebook.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Atikokan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21504_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dcpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\IMPMAIL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR00.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_orange.png	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\common.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0281904.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\modules\simplexml.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Setup Files\{AC76BA86-7AD7-1033-7B44-A90000000001}\abcpy.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD10219_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\FAXEXT.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmlaunch.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATH_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\STORYBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB8.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Panama	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195812.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EMABLT32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l2-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEML.ICO	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN108.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\elevation_service.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-api.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_bottom_left.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FSTOCK.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaSansDemiBold.ttf	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Guatemala	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL011.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0221903.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Hand Prints.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiItalic.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libvod_rtsp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-background.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_avi_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ViewerPS.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196400.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21320_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER.DPV	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Minsk	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMASTHD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\drag.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\DW\DBGHELP.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\VIBE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR3B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_s.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.CMP	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21334_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\picturePuzzle.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\sqlxmlx.rll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\en-US\OmdProject.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\full.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-tools.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.THD.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\handsafe.reg	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME13.CSS	winhost.exe
File opened for modification	C:\Program Files\SwitchTest.dwfx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libddummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_right.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_hov.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWLAY32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\en-US\Sidebar.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RCLRPT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Accra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME21.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml	winhost.exe
File opened for modification	C:\Program Files\FindBlock.pps	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\plugin.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CSS7DATA0009.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpnssci.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\CLICK.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\DMR_120.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\gstreamer-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImages.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Santiago	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libscte18_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jcmd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART15.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYER98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fur.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14656_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ShowUnregister.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)alertIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Hovd	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RTFHTML.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15136_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR29F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows NT\TableTextService\TableTextServiceSimplifiedShuangPin.txt	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\720_480shadow.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\oledb32.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdtv_plugin.dll	winhost.exe
File created	C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\release.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JdbcOdbc.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Beige.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Sitka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromecast_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jpeg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\ReadOutLoud.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rainy_River.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-uihandler.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\WSS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21422_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\penusa.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\wsimport.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\VPREVIEW.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogo.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\Tulip.jpg	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21319_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN096.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWRECS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.attributeTransformation.exsd	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\attention.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt.hyp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGLINACC.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\XIMAGE3B.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdmo_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jawt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\EXPTOOWS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscene_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticattribute.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Mexico_City	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe AIR\sentinel.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics\20200616092334.pma	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\People\GIGGLE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-utilities.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\rmic.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Tools.Applications.Project.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\oledbvbs.inc	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Chagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\modules\host.luac	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MsMpCom.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\1033\VSTAProjectUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-common.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15034_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.LIC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-coredump.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_few-showers.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_right_pressed.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\xlsrvintl.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvmstat.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+9.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.SE.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\si.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSPTLS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Algiers.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Chita.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1665.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\crashreporter.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Class.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\logs\maintenanceservice-install.log	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\date-span-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)grayStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwingdi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR44F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\tab_off.gif	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\nl.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ug.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-font.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\management\management.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Simple.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libcc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN001.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\NOTEL.ICO	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\EXITEMS.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libgme_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libextract_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR42F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\CONFLICT.ICO	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libmmdevice_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199805.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR22F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_smem_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACEODBCI.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0291984.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ORIG98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\airappinstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\WET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\crashreporter.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEDAO.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libadummy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\content-foreground.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FBIBLIO.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jstatd.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\mlib_image.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR31F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.DynamicData.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Sofia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new_partly-cloudy.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10266_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR43F.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\java.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLV.PPT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0186002.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\FONTSCHM.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Toronto.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_ja.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libty_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-templates.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\huemainsubpicture2.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\RECALL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SHAREPOINTPROVIDER.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10255_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\OCLTINT.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\javafx-iio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Tiki.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME13.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_WMC_LogoText.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\blackbars60.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javaws.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\keytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_uk.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21327_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Core.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_docked.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\can03.ths.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\40.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\White_Chocolate.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_F_COL.HXK	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmprph.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fy.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME32.CSS	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\modules\sandbox.luac	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libgl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\readme.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bahia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\en-US\oledb32r.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME18.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libtcp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\orbd.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.AddIn.Contract.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18198_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_pwa_launcher.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\MST7MDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14830_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMV12\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\27.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-attach.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299611.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL020.XML	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fi.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\mng2.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199727.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\en-US\msoeres.dll.mui	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\RTC.der.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\ended_review_or_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\SystemV\EST5.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\management.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBWZINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineIdle.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WCOMP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Temp\GUM2396.tmp\GoogleUpdateSetup.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BIZFORM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\external_extensions.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2native.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\libxslt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libh26x_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\ENUtxt.pdf	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_PDF.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATALOG.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\forms_super.gif	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OSetupPS.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendtoOneNoteFilter.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Recife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateOnDemand.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\flight_recorder.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Conversion.v3.5.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_dummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\ieproxy.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Seyes.jtp	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\management\management.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART8.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPL.ICO	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\IEShims.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\button.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\js\calendar.js	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\directshowtap.ax	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-spi-actions.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\MET	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\ROGERS.COM.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_s.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN096.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libadjust_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\xlsrvintl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB2B.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLY98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmicrodns_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21448_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21495_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\PDXFile_8.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\46.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libchain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_hov.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14693_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR21F.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiling.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR34F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\odffilt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299125.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18214_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.LEX	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected]	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\15x15dot.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\wsdetect.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\sw.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\deploy.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\xmlrw.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\orbd.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0285444.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\id.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Eula.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\drag.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkDrop32x32.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-previous-static.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\VVIEWRES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15156_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKDECS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AIR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\PDIALOG.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ACCSBAR.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_pressed.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fontconfig.properties.src.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15132_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_foggy.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR25F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\application.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME16.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msdfmap.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\MSSPC.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_windy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\net.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_rainy.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\sunec.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveNoDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.metadataprovider.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART5.BDR	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\PABR.SAM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Casual.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_selectionsubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Santarem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\BG_ADOBE.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_up.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multitabs.jar	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push_title.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\schemagen.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ogg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ConnectExpand.ADTS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Full.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\policytool.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\MSOHTMED.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WCOMP98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR15F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULLQUOTEBB.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-7.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\mozglue.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-ui.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21321_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Classic.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\hu.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\ct.sym.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212957.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\eula.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BDRTKFUL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_description_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\tile_drop_shadow.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sl.txt	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-3.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21318_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOUC.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SPANISH.LNG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\excel.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec64.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SEQCHK10.DLL	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_right.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_dot.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21519_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_up.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\Filters.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\+Connect to New Data Source.odc.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\setup_wm.exe.mui	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\VisualElements\SmallLogoDev.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_bkg.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_hail.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\lv-LV\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205582.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART10.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\sa-jdi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\glib-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR35F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115865.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7wre_fr.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\authplay.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\es-419.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSSP7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21365_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR11F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Xlate_Complete.xsn	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_ja.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SMIMEE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Boise.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Microsoft.Synchronization.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BCSClient.Msg.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\bg.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEXBE.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\th.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME55.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.DirectoryServices.AccountManagement.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\decora-sse.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\uk.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18225_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_rtp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216516.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Optional\README.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fr.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jhat.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\java.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\mozavutil.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Magadan	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGREPFRM.DPV	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPUNCT.DPV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MyriadPro-BoldIt.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-annotations-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Mahe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.BusinessData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Distinctive.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)grayStateIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2ssv.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR34B.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Components\SignedComponents.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLJRNLR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Maroon.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\DataSet.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\date-span-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup-impl.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javah.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\vintage.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\UCT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\clock.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASK.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME22.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\messageboxinfo.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.SE.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt04.hsp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\BlackTieMergeLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7ES.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSDecWrp.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14800_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR35F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT_K_COL.HXK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWCUTLIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\custom.lua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAClientPkg.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup-impl.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jsoundds.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\COUPLER.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN110.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\default_apps\youtube.crx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ko-KR\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\IMCONTACT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\unpack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\unpack200.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Damascus.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\DESKSAM.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN109.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\ICU\icudt26l.dat	winhost.exe
File created	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADVZIP.DIC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CATWIZ11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBAR.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME37.CSS	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLR.SAM	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\CoolType.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDSF.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR14F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AssemblyInfo.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpClient.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Godthab	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\networkinspection.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR47F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196164.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected]	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_few-showers.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-4.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNoteUI.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_italic.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\info.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPICCAP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_right.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ENGDIC.DAT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\ucrtbase.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSAIN.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14800_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\pl.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21325_.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Oral	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART8.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kaa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-spi-quicksearch.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jli.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUDIOSEARCHLTS.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORTS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Sync Framework\v1.0\Runtime\x64\Microsoft.Synchronization.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL081.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Budapest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18248_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0233312.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_setid_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_copy_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemuxdump_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_h.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Christmas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14866_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGNAVBAR.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-threaddump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\TURKISH.TXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\navBack.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\wsdetect.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\TASKACCL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_orange.png	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\8.0\Microsoft.VisualStudio.Tools.Applications.DesignTime.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Bears.htm	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR35F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONENOTEMANAGED.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\SaveAsRTF.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_it.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\LoginDialogBackground.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BS4BOXES.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\square_settings.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WindowsBase.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\ro.pak	winhost.exe
File opened for modification	C:\Program Files\FindBlock.pps.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msmgdsrv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\ORG97.SAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGHEADING.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21336_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\GB.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME13.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\submission_history.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\OFFICE10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14794_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR41F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR22F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\turnOnNotificationInTray.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ADRESPEL.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OFFLINE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Baku.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Defender\MpAsDesc.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\lt.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21433_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\POSTITL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Perf_Scenes_Subpicture1.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\MDIParent.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-uihandler.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGZIP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\SHOVEL.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmad_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\modules\sandbox.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21315_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libshm_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_10_p010_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ReviewRouting_Review.xsn	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\EmptyDatabase.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212219.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\chrome.VisualElementsManifest.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\Accessible.tlb	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\MSTHED98.POC	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\uninstall.log	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\MSSOAPR3.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\License.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CONTACTINFOBB.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2native.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Vancouver.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR38F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericonMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html	winhost.exe
File created	C:\Program Files\Java\jre7\bin\jp2ssv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR13F.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Filters\msgfilt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\HAMMER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\To_Do_List.emf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293240.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Things\CAN.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\extcheck.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXC	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21325_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL010.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.Infopath.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\nbexec.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Regina.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\wabmig.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212701.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18221_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGMARQ.DPV	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SELFCERT.EXE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0235241.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR8F.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_issue.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR33F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libftp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\server_lg.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+9	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18217_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSQRY32.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdaterInstallMgr.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18234_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\wmpconfig.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0216858.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\settings.js	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jaas_nt.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Monet.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_s.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CALHM.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL077.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACERCLR.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\java.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14980_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libdeinterlace_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\COPYRIGHT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\203x8subpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\server\classes.jsa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\FPSRVUTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\msadc\msadcer.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\ALERT.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSODCW.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MORPH9.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB10.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.CO.ID.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15022_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.MMW.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Form.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\AUDIOSEARCHLTS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libwebvtt_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\gadget.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-uisupport.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGSIDEBR.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\AppInfoDocument\AddIns.store	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Australia\Hobart.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ACERECR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\updater.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\powerpnt.exe.manifest	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLJRNLR.FAE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CalendarToolIconImages.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSOUC_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0295241.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\resources.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME49.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\groove.net\Servers\RELAY.CER.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javafxpackager.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_block_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\he.txt	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationLeft_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\en-US\iedvtool.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\plugin.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR14F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\cmm\GRAY.pf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_photo_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\calendars.properties	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Noronha.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ContactPicker.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGN.CFG	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe	winhost.exe
File created	C:\Program Files\MergeCompress.WTV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\en-US\jnwdui.dll.mui	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_super.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.ES.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBCAL.DPV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\WMPSideShowGadget.exe.mui	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21326_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\bin\pack200.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Miquelon	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME20.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Menominee.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\it.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_ja.jar	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\modules\common.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\visualization\libvisual_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Multimedia.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToScenesBackground_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSOCF.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-api-caching.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR46B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\send-email-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fr.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-charts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21423_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR31B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14677_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\drvDX8.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightDemiBold.ttf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESPL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\logo.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-multiview.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_dot.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EXSEC32.DLL	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090070.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\1033\OLMAILR.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-hang-ui.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-uisupport.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PROGRAM.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.MX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ku.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Bissau	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CharSetTable.chr	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME09.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21303_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libmpg123_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\javaws.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\EPSIMP32.FLT	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ONWordAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TAG.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PRTF9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\misc.exe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART4.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_down.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15155_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libsftp_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\clock.js	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libanaglyph_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ps.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\plugin2\msvcr100.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Wordconv.exe	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libstats_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\view.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActionExceptionHandlers.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21390_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Web Folders\1033\MSOSVINT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sendopts.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONPPTAddin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\25.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\msdaosp.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10253_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateSetup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\APA.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGATNGET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\klist.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\3difr.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR19F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR36F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libdca_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libnsv_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.sig	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\MSPVWCTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\chrome_100_percent.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ar-SA\tipresx.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-text.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1031\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\ktab.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SOCIALPROVIDER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN020.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libmod_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\uninstall.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT-12	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Invite or Link.one.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN092.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\cursors\win32_LinkDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jinfo.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_realrtsp_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt	winhost.exe
File created	C:\Program Files\Java\jre7\bin\java_crw_demo.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libwingdi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222019.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15172_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_nv12_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ConvertInkStore.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POST98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-It.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_rainy.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\sqlxmlx.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-core.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javafxpackager.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\TWSTRUCT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\flyout.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\email_initiator.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\JavaAccessBridge-64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21294_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.Design.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PROOF\MSTH7ES.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\QUIKPUBS.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\settings.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OIS_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Journal\Templates\Genko_2.jtp	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\MinionPro-Regular.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\install.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt55.ths	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Services\verisign.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\ado\msador15.dll	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_On.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee100.tlb.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OMSINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_id.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Palau.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\images\cursors\win32_MoveDrop32x32.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\en-US\wab32res.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\EntityPicker.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME50.CSS	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-visual.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSACCESS_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\LICENSE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN026.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\BCSLaunch.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\pack200.exe	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\Contracts\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Shades of Blue.htm	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Chita	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\BCSRuntimeRes.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14769_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+5	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\Discussion.gta	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_am.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\CreateSpaceImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.DPV	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCARDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jp2iexp.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg	winhost.exe
File created	C:\Program Files\7-Zip\Lang\af.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\203x8subpicture.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT+6.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\tnameserv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB.DEV_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\FindTrace.vstm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Riga	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PPSLAX.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libvdummy_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\slideShow.css	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCHUR11.POC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIBUtils.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\5.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\minidump-analyzer.exe	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sr-spc.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\content-types.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WSIDBR98.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_docked.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\La_Paz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\blocklist.xml	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ALRTINTL.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\FOLDER.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\1.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fur.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationUp_ButtonGraphic.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\net.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\CERTINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\create_form.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bn.pak	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Spelling.api	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\README.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\w2k_lsa_auth.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18253_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\SEQCHK10.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annots.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_uparrow.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1655.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB9.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\is.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18244_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\FONTSCHM.INI.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\cs.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Tirane	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipscht.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR23F.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\icon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18204_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\flyout.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.REST.IDX_DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\iexplore.exe	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_concat_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libvhs_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-tools.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ASCIIENG.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter_partly-cloudy.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPERSON.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\instrument.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15057_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD98.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN011.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\nl-NL\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\PipelineSegments.store	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OIS_COL.HXT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\browser\features\[email protected].[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\el.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\hprof.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msmdsrv.rll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\main.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21376_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\DataSet.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.DPV	winhost.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\AUTHZAX.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\javah.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUB6INTL.REST.IDX_DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Mail\en-US\WinMail.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.IE.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_hr.dll	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\crashreporter-override.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\info.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SIGNL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libadjust_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Text.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1036\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Bogota.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21332_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\bg_Premium.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsvorepository_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmirror_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\et.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\msvcr100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21300_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\management-agent.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\DMR_120.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\javaw.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\dt_socket.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\mscss7cm_en.dub.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\id.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NEWS11.POC	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradient_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter.png	winhost.exe
File opened for modification	C:\Program Files (x86)\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-dock.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fi.txt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_shmem.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\el.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME39.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\VISSHE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\OLTASK.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB7.BDR	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\clock.js	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_over.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dtplugin\npdeployJava1.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR3B.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sampler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART10.BDR.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jarsigner.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Karachi	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateSetup.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\msolui100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\javafx-iio.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\VBAOWS10.CHM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\J0115875.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\lv.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\15x15dot.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15061_.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Media Renderer\RenderingControl.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OISGRAPH.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.aup	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\liboldmovie_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_ring_docked.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14565_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVELOPE.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGCHKBRD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Updater6\AdobeUpdate.cer	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBHD.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\en-US\iexplore.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR44F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\eventlog_provider.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\it-IT\tipresx.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10297_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MAPISHELLR.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-back-static.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_bottom_left.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Mac\TURKISH.TXT	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Africa\Tunis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18254_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\SpeechEngines\Microsoft\TTS20\en-US\enu-dsk\M1033DSK.IDX	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-hang-ui.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\timeZones.js	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\ea.xml	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\plugins.dat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\MAPISHELLR.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\IA2Marshal.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\TipBand.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\AIR98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\reflow.api	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_chromecast_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_same_reviewers.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\TipBand.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Entity.Design.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10298_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR25F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_av1_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libtimecode_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CORE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Paramaribo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONENOTE_K_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PROOF\MSHY7FR.LEX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Monterrey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\EXPLODE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libheadphone_channel_mixer_plugin.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\47.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\TYPE.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21299_.GIF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\eng32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Computers\computericonMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Library\Analysis\PROCDB.XLAM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-outline.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_ja.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Lime.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGWEBREF.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10267_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\Help\1031\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\ssvagent.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfps_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsdt.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Yellowknife	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_ja.jar	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\EMAIL11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.VisualBasic.Targets	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libposterize_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18226_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14565_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME10.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.SemiTrust.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Dawson	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-swing-outline.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18220_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR39F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\pencht.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-spi-quicksearch.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21520_.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SECURE.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\GWE.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\VDKHome\VDK10.SYX.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsfsstorage_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\engphon.env	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0158007.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\visualization\libgoom_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\39.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR30B.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\XML Files\builtincontrolsschema.xsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_left.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticattribute.exsd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiItalic.ttf	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\GreenTea.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\yo.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\kk.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-visual.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_dot.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\d3d9\libdirect3d9_filters_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-image-mask.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jdwp.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SlateBlue.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\THANKS.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME41.CSS	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_settings.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\14.png	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1250.TXT	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODTXT.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\security\blacklist.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14655_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsusf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\spu\librss_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\security\javafx.policy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\AppConfigInternal.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\SETLANG.HXS	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0195534.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OnLineBusy.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\powerpnt.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libcdda_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libantiflicker_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\psfontj2d.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\SoftBlue.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MSAEXP30.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_ja.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18244_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libbluray-j2se-1.0.2.jar	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\sq.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\AUTHOR.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIconMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\TextConv\WPFT632.CNV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\28.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCDDSLM.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL044.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\Settings.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0286034.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR14F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGDOTS.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotionblur_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateOnDemand.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18187_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\excelcnv.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins3d\3difr.x3d.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\bear_formatted_rgb6.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-charts.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\JOURNAL.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10266_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\RM.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\QuestionIcon.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\HAMMER.WAV	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18213_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBBA\MSPUB3A.BDR	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\en-US\msdaorar.dll.mui	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\MainMenuButtonIcon.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_divider.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\PPKLite.api.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_s.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14581_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDCNCLS.ICO	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_asf_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\amd64\jvm.cfg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Entity.Design.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_down.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_hail.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\iexplore.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\Adobe\symbol.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_right.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\Network Sharing\ContentDirectory.xml	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_thunderstorm.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annotations\Stamps\ENU\SignHere.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARVERTBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR47F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21300_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\bn.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SC_Reader.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLWVW.DLL.IDX_DLL	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\review_browser.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\EQUATION\1033\EEINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Nipigon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBARV.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\time-span-16.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dialog.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\7-zip.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_sv.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\PREVIEW.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jvisualvm.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\PDFSigQFormalRep.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0196400.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0199805.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\IntroducingPowerPoint2010.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Updater.api	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\CAGCAT10.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\NAMECONTROLSERVER.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libmft_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\ICU\icudt26l.dat.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jabswitch.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15273_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-spi-actions.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME25.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dt_shmem.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-13.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMWIN.FAE	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\psuser_64.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Microsoft.Office.Interop.InfoPath.Xml.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\custom.lua	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18191_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\ReceivePing.ex_.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-left.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR50F.GIF	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\flyout_background.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299171.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENVHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN011.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_hail.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsjpn.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Africa\Maputo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\pe.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\system_dot.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfxmedia.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-execution.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_over.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-charts.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Indian\Maldives.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\HLS.api	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\layers.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGAD.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLOOK.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN054.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\EquityReport.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Vienna.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\CET.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0299125.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\logger\libfile_logger_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-spi-quicksearch.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\AccessWeb\CLNTWRAP.HTM.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\SketchIconImages.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXEV.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0298653.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN054.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Earthy.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR29F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\penchs.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\java.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_RGB_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaBrightDemiBold.ttf	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14677_.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\EntityDataHandler.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLACCT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\main.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-annotations-common.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-javahelp.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\decora-sse.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Malta.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSODCW.DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\MSOINTL.REST.IDX_DLL	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_docked.png	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-right.png	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-charts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PTXT9.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Resources\1033\msolui100.rll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSPST32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroTextExtractor.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\ssvagent.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\fonts\LucidaBrightItalic.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14985_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21327_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\CERT.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PPINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\en-US\WMPDMC.exe.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME06.CSS	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ACCWIZ\ACWZMAIN.ACCDE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_ro.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multiview.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\GRAPH.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libedgedetection_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\ParentMenuButtonIcon.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.REST.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sendopts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR40F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libripple_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-queries.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\OISINTL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21435_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\19.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18232_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\FLYERHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGLBL108.XML	winhost.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\System.Xml.Linq.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationRight_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME46.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\42.png	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\SETUP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR20F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIDEBARBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\en-US\TipRes.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\bin\gstreamer-lite.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\XLLEX.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN090.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgrain_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\th.pak	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Form.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\IEShims.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sa.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD14882_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MEDIA\ARROW.WAV	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\serialver.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD10302_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\ONGuide.onepkg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\mozglue.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\amd64\jvm.cfg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Ojinaga.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Efate.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OneNote\SendtoOneNoteFilter.gpd.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR17F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\CourierStd-BoldOblique.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsfin.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\DMR_120.jpg	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\bod_r.TTF	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\glass.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatialaudio_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Metlakatla.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\WMPMediaSharing.dll	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_h.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PICSTYLES.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Maceio.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcolorthres_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ka.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FDATE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VC\msdia100.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OMSMMS.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\prism-d3d.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataListIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\images\back_lrg.png	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_babypink_Thumbnail.bmp	winhost.exe
File opened for modification	C:\Program Files\Common Files\System\Ole DB\en-US\oledb32r.dll.mui	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\ado\msado21.tlb	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ACCDDS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM	winhost.exe
File created	C:\Program Files\Mozilla Firefox\browser\VisualElements\VisualElements_150.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0234657.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15173_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libedummy_plugin.dll	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_cycle_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\ENU\DefaultID.pdf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\userContent_16x9_imagemask.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\jfxwebkit.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-11	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18222_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR42F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\wlsrvc.dll	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\HostSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-execution.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\VPREVIEW.EXE	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_MATTE_PAL.wmv	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\splash.gif	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\codec\libdmo_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Antigua	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationUp_SelectionSubpicture.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR49F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MML2OMML.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft.NET\Primary Interop Assemblies\stdole.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR50F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\SIGN.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\extcheck.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviewers.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1046\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0217698.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\FAX\OrielFax.Dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REMOTE.CFG	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libshm_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\misc\libaudioscrobbler_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMWIN.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\RECS.ICO	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR11F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\TWRECC.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\heart_glass_Thumbnail.bmp	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\deploy.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\RSSFeeds.css	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fr.pak.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODEXL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pidgenx.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\POWERPNT.DEV.HXS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME07.CSS	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\ENV98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_corner_top_left.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\promointl.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\SplashScreen.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Etc\GMT+7	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21344_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll	winhost.exe
File opened for modification	C:\Program Files\Windows Media Player\wmpnetwk.exe	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OneNote\SendToOneNOteFilter.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BRCHUR11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME50.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN058.XML	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\server\Xusage.txt	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14983_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD14752_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\Sounds\Places\BUZZ.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\SNET.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ahclient.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\TextConv\WksConv\Wkconv.exe	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ADDINS\OUTEX2.ECF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME05.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_description_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\ink\ipsdan.xml	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REC.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\SETLANG_F_COL.HXK.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_precomp_matte.wmv	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\NextMenuButtonIconSubpictur.png	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1041\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB_EURO.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libtextst_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AMT\AUMProduct.aup.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\1049\hxdsui.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\mozglue.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Linguistics\Providers\Proximity\11.00\brt32.clx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Merida	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_gather_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POST98SP.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\CMap\Identity-V	winhost.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\VSTA\Bin\VSTAProject.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR26F.GIF	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\SettingsInternal.zip	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\EntityPickerIntl.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Hx.HxC	winhost.exe
File created	C:\Program Files\7-Zip\7zFM.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FDATE.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18219_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\SCDRESNL.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MOR6INT.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\OUTLLIBR.DLL.IDX_DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\TexturedBlue.css	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Detroit.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Pacific\Wake.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR41F.GIF	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\WebToolIconImagesMask.bmp	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Oasis.css	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BROCHURE.XML	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_output\libgl_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\7-Zip\Lang\sr-spc.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\ChessIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_gu.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\7z.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGTEAR.DPV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\plugin-container.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\jsound.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Training.potx	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115834.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_zh_CN.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR9F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Regina	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSTORE_F_COL.HXK	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\vlc-cache-gen.exe	winhost.exe
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1033\EmptyDatabase.zip.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\libGLESv2.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VC\msdia90.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BORDERBB.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEB11.POC	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\TypeSupport\Unicode\Mappings\win\CP1252.TXT	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\America\Edmonton.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.XML	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg_orange.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18247_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMDOS.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME14.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ps_plugin.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hy.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\libEGL.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD15035_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\mscss7cm_es.dub	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\VBAJET32.DLL	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\net.properties	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\GRIPMASK.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\AdobePiStd.otf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\2052\hxdsui.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\uninstall\uninstall.log.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\Images\settings_box_divider_left.png	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Legal\ENU\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Google\Temp\GUM2396.tmp\GoogleUpdateSetup.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-coredump.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\fxplugins.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0301480.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEES.DLL	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\hy.txt	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\ADDINS\otkloadr_x64.dll	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\softokn3.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGPQUOT.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Tracker\reviews_sent.gif	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Media Player\Media Renderer\connectionmanager_dmr.xml	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\ACEODDBS.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\COMPUTER.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sendopts.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Help\Keywords.HxK	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0205466.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0222015.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR15F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\IPOLKINTL.DLL	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Graph.exe.manifest.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Style\APA.XSL	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\HST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\CollectSignatures_Init.xsn.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\QuickStyles\Fancy.dotx	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEB11.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\MEDIA\LASER.WAV.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-core-windows.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_ja.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Bibliography\Sort\TITLE.XSL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\BZCD98SP.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\FORMS\1033\OOFS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\IPMS.ICO.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeUpdater.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\fontconfig.properties.src.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter.png	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\18.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Barbados.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\en-US\sbdrop.dll.mui	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\BORDERS\MSART3.BDR	winhost.exe
File opened for modification	C:\Program Files\Windows Mail\wabfind.dll	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FLT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Whitehorse	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightOrange.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF	winhost.exe
File opened for modification	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Windows Sidebar\settings.ini.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\en-US\msdaprsr.dll.mui	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Solutions.css	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD15274_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_settings.png	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LTHDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DGACCBOX.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.XML	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR45F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-openide-io.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CDLMSO.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\PUBWIZ\PULQOT98.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Checkers.api	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0212661.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLACCT.DLL	winhost.exe
File opened for modification	C:\Program Files\ResumeUnlock.wma	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME22.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Bibliography\Author2XML.XSL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\POSTCD11.POC	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OSETUPUI.DLL	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\GIFT98.POC	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-oql.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115867.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libalphamask_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\Discussion.css.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\OMSXP32.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Europe\Zurich.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME27.CSS.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME43.CSS	winhost.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInSideAdapters\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-common.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\ASCIIENG.LNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\NAVBRPH2.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaps.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21319_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABEL.DPV	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\splashscreen.dll	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.35.452\goopdateres_de.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationRight_ButtonGraphic.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-ui.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\MSCOL11.INF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR33F.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE.MANIFEST.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\access\libvcd_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_zh_CN.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-ui.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\MSPUB_COL.HXC	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\FORMS\1033\REPORT.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WORDREP.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Etc\GMT-14.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\BD21434_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PROTTPLN.DOC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\hprof-16.png.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Apia	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PAGESIZE\PGMN086.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\LABELHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.SG.XML	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot.png	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sampler.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\LINES\BD21334_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR6F.GIF	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Cave_Drawings.gif	winhost.exe
File opened for modification	C:\Program Files\Internet Explorer\sqmapi.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Indian\Christmas.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\fonts\LucidaTypewriterBold.ttf.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0183168.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\NotifierUpArrow.jpg	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.COM.XML	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\WINWORD.DEV_COL.HXC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\OLADD.FAE	winhost.exe
File opened for modification	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Font\SY______.PFB	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_settings.png	winhost.exe
File opened for modification	C:\Program Files\7-Zip\Lang\mng2.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Smart Tag\FPERSON.DLL	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\PUBSPAPR\PDIR40F.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\OutlookAutoDiscover\AMERITECH.NET.XML.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Resource\Icons\SecStoreFile.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\OFFICE14\BULLETS\J0115835.GIF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\DVDHM.POC.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Locales\fil.pak	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\config\Modules\org-netbeans-api-visual.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\DataViewIconImagesMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationLeft_SelectionSubpicture.png	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar	winhost.exe
File created	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolBMPs\Form_StatusImageMask.bmp.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\XLICONS.EXE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Engine.dll	winhost.exe
File created	C:\Program Files\7-Zip\Lang\ky.txt.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0090386.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\MEDIA\CAGCAT10\J0293844.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF	winhost.exe
File created	C:\Program Files\Java\jdk1.7.0_80\bin\jvisualvm.exe.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\1033\INFOPATHEDITOR_COL.HXT.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.sig.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\wab32res.dll	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar	winhost.exe
File opened for modification	C:\Program Files\Java\jre7\bin\javafx-iio.dll	winhost.exe
File created	C:\Program Files\Microsoft Office\Office14\Groove\ToolIcons\OutDomain.ico.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\en-US\css\currency.css	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Csi.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\CONVERT\DELIMWIN.FAE.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\PUBWIZ\WEBEMAIL.POC	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\New_Skins.url.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\OFFREL.DLL.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_autodel_plugin.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\OFFICE14\EXP_XPS.DLL	winhost.exe
File created	C:\Program Files\Java\jre7\bin\dcpr.dll.id-1D9C8C54.[[email protected]].smpl	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif.id-1D9C8C54.[[email protected]].smpl	winhost.exe

Drops desktop.ini file(s) 77 IoCs

description	ioc	Process
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Saved Games\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Documents\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Recorded TV\Sample Media\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\ZMLBLRQ7\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Links\desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Favorites\Links for United States\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Pictures\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Searches\desktop.ini	winhost.exe
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Contacts\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Music\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Pictures\Sample Pictures\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Videos\desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OLSU73OI\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V8SX06NR\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Favorites\Links\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Desktop\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Music\Sample Music\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Pictures\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Videos\Sample Videos\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\RBDIK06K\desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Documents\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Music\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Favorites\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1MJ70CPH\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\History\desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Libraries\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Downloads\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Videos\desktop.ini	winhost.exe
File opened for modification	C:\$Recycle.Bin\S-1-5-21-1131729243-447456001-3632642222-1000\desktop.ini	winhost.exe
File opened for modification	C:\Program Files\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GVV7BJHB\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\Desktop\desktop.ini	winhost.exe
File opened for modification	C:\Program Files\desktop.ini	winhost.exe
File opened for modification	C:\Program Files (x86)\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Windows Mail\Stationery\Desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Libraries\desktop.ini	winhost.exe
File opened for modification	C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Downloads\desktop.ini	winhost.exe
File opened for modification	C:\Users\Public\Recorded TV\desktop.ini	winhost.exe
File opened for modification	C:\ProgramData\Microsoft\Windows\Ringtones\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\AJM03J3Y\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\TGVUK4BG\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini	winhost.exe
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini	winhost.exe

Suspicious behavior: EnumeratesProcesses 289 IoCs

pid	Process
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe
824	winhost.exe

Suspicious use of AdjustPrivilegeToken 3 IoCs

description	pid	Process
Token: SeBackupPrivilege	1700	vssvc.exe
Token: SeRestorePrivilege	1700	vssvc.exe
Token: SeAuditPrivilege	1700	vssvc.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\System32\winhost.exe	winhost.exe
File created	C:\Windows\System32\Info.hta	winhost.exe

Deletes shadow copies 2 TTPs
Ransomware often targets backup files to inhibit system recovery.
ransomware

File Deletion
T1107

Inhibit System Recovery
T1490

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1960	mshta.exe

Dharma
Dharma is a ransomware that uses security software installation to hide malicious activities.
ransomware dharma

C:\Users\Admin\AppData\Local\Temp\winhost.exe
"C:\Users\Admin\AppData\Local\Temp\winhost.exe"
1⤵
- Adds Run entry to start application
- Suspicious use of WriteProcessMemory
- Drops startup file
- Drops file in Program Files directory
- Drops desktop.ini file(s)
- Suspicious behavior: EnumeratesProcesses
- Drops file in System32 directory
PID:824
- C:\Windows\system32\cmd.exe
  "C:\Windows\system32\cmd.exe"
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1296
- - C:\Windows\system32\mode.com
    mode con cp select=1251
    3⤵
    PID:1048
- - C:\Windows\system32\vssadmin.exe
    vssadmin delete shadows /all /quiet
    3⤵
    - Interacts with shadow copies
    PID:1532
- C:\Windows\system32\cmd.exe
  "C:\Windows\system32\cmd.exe"
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1552
- - C:\Windows\system32\mode.com
    mode con cp select=1251
    3⤵
    PID:1952
- - C:\Windows\system32\vssadmin.exe
    vssadmin delete shadows /all /quiet
    3⤵
    - Interacts with shadow copies
    PID:1916
- C:\Windows\System32\mshta.exe
  "C:\Windows\System32\mshta.exe" "C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Info.hta"
  2⤵
  - Modifies Internet Explorer settings
  PID:1980
- C:\Windows\System32\mshta.exe
  "C:\Windows\System32\mshta.exe" "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Info.hta"
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of FindShellTrayWindow
  PID:1960

C:\Windows\system32\vssvc.exe
C:\Windows\system32\vssvc.exe
1⤵
- Modifies service
- Suspicious use of AdjustPrivilegeToken
PID:1700

C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\FILES ENCRYPTED.txt
1⤵
PID:1152

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

T1031

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

File Deletion

T1107

Modify Registry

T1112

Credential Access

Credentials in Files

T1081

Discovery

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Inhibit System Recovery

T1490

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1980-22-0x0000000005FB0000-0x0000000005FD3000-memory.dmp

Filesize
140KB

Download
memory/1980-23-0x00000000046B0000-0x00000000046BB000-memory.dmp

Filesize
44KB

Download