Analysis
-
max time kernel
88s -
max time network
8s -
platform
windows7_x64 -
resource
win7v200722 -
submitted
20/10/2020, 18:23
Static task
static1
Behavioral task
behavioral1
Sample
shell.bin.exe
Resource
win7v200722
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
shell.bin.exe
Resource
win10v200722
windows10_x64
0 signatures
0 seconds
General
-
Target
shell.bin.exe
-
Size
403KB
-
MD5
4c64b7afcf85249f09da741c700eabb1
-
SHA1
18286de90456e26005c346430d1891522a8b985b
-
SHA256
644704ae267daa0f81613569ade954ad2c308031d55e9480501a6afc1ccea83f
-
SHA512
17dece78cd2315202783caa07179028dc3eda5415e69581b8ee57bbebdc72a89d93d6e547082129eece9c0d11f82285cfa00d7da97aa87a0f9f912e692519cfa
Score
8/10
Malware Config
Signatures
-
Modifies extensions of user files 45 IoCs
Ransomware generally changes the extension on encrypted files.
description ioc Process File renamed C:\Users\Admin\Pictures\FindRead.crw.bak.32aa => C:\Users\Admin\Pictures\FindRead.crw.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RevokeFormat.tif.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RemoveUnregister.tiff shell.bin.exe File opened for modification C:\Users\Admin\Pictures\EnterAdd.tif.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\MoveUnprotect.png.bak.32aa => C:\Users\Admin\Pictures\MoveUnprotect.png.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\NewSkip.png.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\DenyEnable.png => C:\Users\Admin\Pictures\DenyEnable.png.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\EnterAdd.tif.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RequestUnprotect.tif.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RemoveUnregister.tiff.bak.32aa => C:\Users\Admin\Pictures\RemoveUnregister.tiff.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\MoveUnprotect.png.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RemoveUnregister.tiff => C:\Users\Admin\Pictures\RemoveUnregister.tiff.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\NewSkip.png.bak.32aa => C:\Users\Admin\Pictures\NewSkip.png.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RemoveComplete.raw.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\SyncSwitch.raw => C:\Users\Admin\Pictures\SyncSwitch.raw.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\SyncSwitch.raw.bak.32aa => C:\Users\Admin\Pictures\SyncSwitch.raw.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\FindRead.crw.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RequestUnprotect.tif => C:\Users\Admin\Pictures\RequestUnprotect.tif.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RevokeFormat.tif => C:\Users\Admin\Pictures\RevokeFormat.tif.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RevokeFormat.tif.bak.32aa => C:\Users\Admin\Pictures\RevokeFormat.tif.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\ExitUnlock.png.bak.32aa => C:\Users\Admin\Pictures\ExitUnlock.png.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\ExitUnlock.png.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\NewSkip.png => C:\Users\Admin\Pictures\NewSkip.png.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\NewSkip.png.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\FindRead.crw => C:\Users\Admin\Pictures\FindRead.crw.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\FindRead.crw.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RevokeFormat.tif.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\SyncSwitch.raw.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RemoveUnregister.tiff.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\DenyEnable.png.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\ExitUnlock.png.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RequestUnprotect.tif.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RemoveComplete.raw => C:\Users\Admin\Pictures\RemoveComplete.raw.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RemoveComplete.raw.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\MoveUnprotect.png.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RemoveComplete.raw.bak.32aa => C:\Users\Admin\Pictures\RemoveComplete.raw.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\DenyEnable.png.bak.32aa => C:\Users\Admin\Pictures\DenyEnable.png.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\EnterAdd.tif => C:\Users\Admin\Pictures\EnterAdd.tif.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\SyncSwitch.raw.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\MoveUnprotect.png => C:\Users\Admin\Pictures\MoveUnprotect.png.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\ExitUnlock.png => C:\Users\Admin\Pictures\ExitUnlock.png.bak.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\EnterAdd.tif.bak.32aa => C:\Users\Admin\Pictures\EnterAdd.tif.32aa shell.bin.exe File renamed C:\Users\Admin\Pictures\RequestUnprotect.tif.bak.32aa => C:\Users\Admin\Pictures\RequestUnprotect.tif.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\RemoveUnregister.tiff.bak.32aa shell.bin.exe File opened for modification C:\Users\Admin\Pictures\DenyEnable.png.32aa shell.bin.exe -
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetThreadContext 1 IoCs
description pid Process procid_target PID 280 set thread context of 1608 280 shell.bin.exe 29 -
Drops file in Program Files directory 21831 IoCs
description ioc Process File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticattribute.exsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sv.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21294_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0291984.WMF shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceSimplifiedZhengMa.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\Management.cer shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME45.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR34F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\plugin-container.exe.sig.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME48.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18224_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_hov.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiling.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SpaceSelector.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\hint_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jsse.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14883_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Soft Blue.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART7.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21326_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR15F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Chagos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\COUGH.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115856.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\si.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\httprequests.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199755.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\updater.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Macau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIPMASK.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB11.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Karachi shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+5.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHSRN.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21303_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\WET shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MYSL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\default.vlt shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME28.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\VIBE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusOnline.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Singapore.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299763.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZDAT12.ACCDU.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Beige.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME15.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Minsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hebron shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ReadMe.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-next-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-keymap.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTIT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\default.vlt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\notes-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\dkjson.luac shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Gaza shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\Xusage.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\DRUMROLL.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\ALARM.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME07.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7db.kic shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSPUB.TLB.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18246_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\english.lng.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18243_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\ELPHRG01.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\profile.jfc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.descriptorProvider.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL109.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_down.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\LASER.WAV shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\VideoLAN Website.url.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.POC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rainy_River.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ps.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21340_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\LASER.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL102.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-11.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vienna shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21434_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212701.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.JP.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_docked.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21518_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lij.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESEND.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_thunderstorm.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPLTMPL.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\TYPE.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\RSWOP.icm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\local_policy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18196_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART4.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21307_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Brunei.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Amd64\jvm.cfg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL083.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\PreviousMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+12.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST7MDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\London.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BOMB.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sa.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CST6CDT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fur.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115841.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21329_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\connectionmanager_dmr.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_up.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURL.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javafx.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24Images.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLTS.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-options.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14980_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCTBOX.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18211_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4B.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Hermosillo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIP.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfxrt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0211949.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3A.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Green Bubbles.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR17F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183168.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OUTLOOK.EXE.MANIFEST.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\pss10r.chm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSSPC.ECF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL086.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Rome.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115840.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bg.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\css\cpu.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Palau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME22.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME39.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN110.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR39F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21342_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_down.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\VelvetRose.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7EN.dub.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL012.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterNotificationDescriptors.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART14.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\MainMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_right_pressed.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\play-static.png shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL078.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARDHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SHARING.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14800_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18196_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dubai shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ky.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZLIB.ACCDE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.XLS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14595_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2XML.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-dock.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMain_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\spacer_highlights.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over_BIDI.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-outline.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Singapore shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSO.ACL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02261_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-visual.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\ATPVBAEN.XLAM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.PPT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14533_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_de.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACC.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-execution.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MET shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1A.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21328_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299171.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pa-in.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14800_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14538_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18199_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SNET.NET.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\default.jfc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-javahelp.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALNDR98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN090.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-14.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298897.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\EUROTOOL.XLAM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21308_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_VideoInset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutSyncPC.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\720_480shadow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21315_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\timer_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21343_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212957.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL065.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\CLNTWRAP.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15273_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREET11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157763.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-threaddump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Adak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Malta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\20.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Waitcursor.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainToScenesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GB.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_70.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javaws.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\plugin.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_LightSpirit.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14581_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64_3.103.1.v20140903-1947.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-filesystems.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\StopIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javafx.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14831_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-dayi.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ADO210.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14871_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME24.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\WANS.NET.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-settings.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15173_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\whiteband.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0252349.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0335112.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\PMAILEXT.ECF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302953.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Godthab shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-heapdump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME06.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-heapwalker.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\flyout_background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15156_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-io-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTE.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\License.txt shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Genko_1.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME52.CSS shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_SelectionSubpictureA.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santarem shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCD98SP.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\validation.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14831_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\branding.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-search.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tijuana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\de.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mn.txt shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\blocklist.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-progress.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21324_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RSPMECH.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00555_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21306_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\APA.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsplk.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_right_rest.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHED98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10266_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_VelvetRose.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR18F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\ko-kr.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\1.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORMCTL.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14983_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ca.txt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0187423.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Oslo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.DOC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_rightarrow.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302827.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-spi-quicksearch.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHPHN.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18245_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PACBELL.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGNHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199549.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_windy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14754_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21324_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0230876.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Palau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.CN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18254_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302953.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18232_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\GIGGLE.WAV shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Shorthand.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21503_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterToolTemplates.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\hint_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-nodes.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\french.lng.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-options.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222019.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14791_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287020.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Flyout_Thumbnail_Shadow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jawt.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Jamaica.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME17.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\DESIGNER.ONE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL082.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.CN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_schemas14.xss.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\Messenger.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB8.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21331_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR14F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansDemiBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10289_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightItalic.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10301_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\logging.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\BUZZ.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART12.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-templates.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216516.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belize shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guam.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPLTMPL.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Bibliography\BIBFORM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nn.txt shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\update-settings.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-right.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME41.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\CHICAGO.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL077.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Fortaleza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216724.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Martinique.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10265_.GIF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297551.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\ehshellLogo.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UCT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yellowknife.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\RPLBRF35.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR31F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Review.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.gpd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME32.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302827.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_precomp_matte.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_h.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_notes-txt-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\LICENSE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\SNEEZE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL102.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2B.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\NOTICE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\EUROTOOL.XLAM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_hail.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH2.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-print.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15185_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115843.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21310_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvmstat.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\UnlockApprove.rar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_sun.png shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\images\bing.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Accessible.tlb.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\css\currency.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiItalic.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Seoul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-modules-appui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3B.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guayaquil.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Manaus.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18238_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nb.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVTEL.DIC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sa.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292020.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14882_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP shell.bin.exe File opened for modification C:\Program Files\AddMeasure.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssLogo.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\jfont.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\SwitchSkip.wm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\resources.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\Components\SignedComponents.cer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-12 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-fallback.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL020.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-uihandler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR31F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ta.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tirane.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1AR.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-heapdump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL086.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AU.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Omsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMAIN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-favorites.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME12.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR14F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART9.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15021_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21377_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\tile16.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\13.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-5.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mexico_City shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10290_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0283209.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\symbase.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFRES.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\3082\MSO.ACL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195812.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AR.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18206_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300840.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN086.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\time-span-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-oql.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Apia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)notConnectedStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-attach.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mspub.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTIT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\clock.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR41F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART8.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.PPT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300912.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-core.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Perspective.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\FLASH.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\az.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\redStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-options-api.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightItalic.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multitabs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thule.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\console_view.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL106.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN102.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-search.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vienna.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.JP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235319.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\navSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14982_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186002.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\update-settings.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RCLRPT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN002.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14756_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\glow.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Brussels.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME34.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Omsk shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14711_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thule shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCINFO.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiling.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286068.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21505_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+Connect to New Data Source.odc shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14768_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dubai.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.XLS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR26F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14528_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-2.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Training.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBEMAIL.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-snaptracer.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251301.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Invite or Link.one shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15056_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-applemenu.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN002.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\18.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-crescent_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\button-overlay.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ca.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10307_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115867.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\application.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293238.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\EquityFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_INIT.XSN shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285360.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOC.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH1.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME30.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL058.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-new_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hr.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-plaf.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-1.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\AMERITECH.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115834.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZMAIN.ACCDE.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Country.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javafx.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZUSR12.ACCDU.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-services.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fi.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-windows.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS_DocLib.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActionExceptionHandlers.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21421_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\button-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\VeriSignLogo.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240719.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186002.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PACBELL.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MYSL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-11 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\sRGB.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Oral.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME36.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299171.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CHECKER.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN097.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\alt-rt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115835.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.NZ.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieResume.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SNET.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\PersonalContact.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\host.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0336075.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.ELM shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt-br.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\xul.dll.sig shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQ.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL016.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)grayStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Charitable Contributions.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.XLS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSansBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-ui.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222015.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Lima shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToScenesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\39.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.VN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15276_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\branding.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\validation.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\UndoGroup.xlsb.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME01.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15018_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-windows.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14831_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-tw.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLEX.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14981_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WPULQT98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gu.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_h.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME20.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115840.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14869_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.Runtime.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21534_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-charts.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\LICENSE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECREC.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TAG.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\St_Johns shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\SERVWRAP.ASP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205466.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECREC.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15133_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14984_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTFORM.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESEND.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\index.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18250_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21321_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15056_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\THROAT.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_disabled.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\5.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\classes.jsa.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART5.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\logo.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.DPV shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-back-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-api-caching.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MY.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up_BIDI.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0284916.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18246_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-disable.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL081.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\TYPE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ar.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\install.log.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MARQUEE.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861258748.profile.gz shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\HICCUP.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN054.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234657.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21364_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.PPD.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Services\verisign.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ms.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15023_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Music.jtp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME52.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293240.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Newsprint.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_150.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR23F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\blocklist.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME03.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18231_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup-impl.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN011.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18194_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14578_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15058_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7db.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\New_Skins.url.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21295_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\Bear_Formatted_MATTE2_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Premium.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR28F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21314_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR22F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.HK.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ModifiedTelespace.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18252_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186348.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_down.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR13F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196374.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN065.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\settings.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50B.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBAD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PG_INDEX.XML shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bg.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\powerpnt.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-explorer.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Amd64\jvm.cfg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSSMS.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multitabs.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.gpd.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DVDHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_divider_right.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0336075.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs-nio2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ms.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-nodes.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_LightSpirit.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsesp.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5B.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-actions.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14753_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WIND.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WIND.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\net.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF shell.bin.exe File opened for modification C:\Program Files\DenyUnprotect.jpeg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskpred.xml shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_48.jpg shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\file_obj.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Amman shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\EXPLODE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-core.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kabul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME46.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0252349.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME39.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301480.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-views.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jsse.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME31.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02407_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montevideo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0221903.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Seoul shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL001.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10358_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginDialogBackground.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ContactSelector.ico shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_snow.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFTMPL.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME38.CSS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-output2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Sofia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CT_ROOTS.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Person.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxinfo.ico shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART10.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18243_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3B.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR19F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\VOLTAGE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ka.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\settings.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15156_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\main_background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.attributeTransformation.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\NEWS.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-uihandler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21520_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jni.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-11 shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX.ECF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNoteNames.gpd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18182_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montevideo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Midway.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14791_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18229_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Country.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293234.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\Reader\filename.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-settings.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Barbados.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.DE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierUpArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\mainscroll.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-tabcontrol.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115876.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\notConnectedStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-cli.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SketchPadTestSchema.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-core.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Premium.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Taipei.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18233_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABELHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ug.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\title_stripe.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBlankPage.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WSIDBR98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15022_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Groove Starter Template.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PRODIGY.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21311_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-ui.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_TexturedBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\keypadbase.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-keymap.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL077.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_ca.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-tools.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIPC.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-util-enumerations.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME42.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME50.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieMergeLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vienna.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-charts.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fr.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Reunion shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21423_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14595_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15034_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0088542.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_bottom.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sampler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR18F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME35.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21301_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multiview.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\asciieng.lng shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233070.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACCESS12.ACC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR41F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\Access\libbluray-j2se-1.0.2.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw32.jpg shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR42F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEML.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\classes.jsa.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14539_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL108.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10299_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18205_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+NewSQLServerConnection.odc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME14.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\dnsns.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.INI shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Detroit.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPAPERS.INI shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\http.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21365_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\SIGNUP\install.ins.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME29.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR31F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-print.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL109.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235241.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCSBAR.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Median.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javafx.policy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTES.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\numbers\numbase.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rssBackBlue_Undocked.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_VideoInset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kab.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15272_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusAway.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEM.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Godthab.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14691_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-search.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ModifiedTelespace.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Roses.htm shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL054.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21377_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-awt.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST7MDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESP.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\STOPICON.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18202_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GB.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_hov.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Brussels.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTE.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.INF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.attributeTransformation.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLIST.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18219_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\sound.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\AddMeasure.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Swift_Current.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0295241.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART5.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\vi.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansDemiBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.security shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Macquarie.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR37F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxinfo.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14800_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\APPLAUSE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21319_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-views.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Noronha.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\validation.js shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Couture.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\WANS.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_70.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_right.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+6 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-doclet.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Manila.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVCMP.DIC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\TURABIAN.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.HK.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImages256Colors.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\combo-hover-middle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS4BOXES.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21480_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR15F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterBold.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UTC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Moscow.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmti.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Invite or Link.one.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR40F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\FONTSCHM.INI.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.TH.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\diagnostic-command-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Magadan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14533_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guyana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299587.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrenalm.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\plugins.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Araguaina.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0283209.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\REMINDER.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\settings.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nn.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\plugin.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uk.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-cli.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tirane.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierCloseButton.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hu.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.password.template.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1AR.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\el.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14844_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-core-kit.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332364.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\settings.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN001.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipschs.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115868.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293828.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2B.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_right.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21308_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\RSSFeeds.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR35F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-execution.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XLMACRO.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-loaders.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Bears.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBARV.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerEvaluators.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME16.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pl.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL027.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS10TARG.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\NOTICE shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMEE.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\Messenger.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-progress.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Oral.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_hover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199036.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansDemiBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVZIP.DIC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-windows.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-favorites.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RES98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POST.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-util-enumerations.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-annotations-common.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEM.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Custom.propdesc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRMV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-options-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332364.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART9.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Algiers shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14531_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-views.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-charts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSOSEC.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\shortcuts_log.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\Notebook.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvm.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212661.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_thunderstorm.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPS.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Berlin.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL11.POC shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ru.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_VideoInset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18182_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\cacerts shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_floating.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jce.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management-agent.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10267_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Gradient.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-11.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\charsettable.chr shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\ConnectRead.svg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\LICENSE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\PYCC.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21298_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN092.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-output2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Swift_Current.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10337_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN111.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\daisies.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)redStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-snaptracer.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18213_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21390_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\httprequests.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TAG.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEB11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REC.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INCOMING.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Rome shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sl.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0281904.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14845_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14755_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0281904.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-awt.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterNotificationDescriptors.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Inuvik.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWSHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\DELETE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\TOOT.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115841.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_rest.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-join.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\TURABIAN.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00260_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299171.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sampler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14532_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\shuffle_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\charsets.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-compat.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18211_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostName.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115876.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-next-static.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14844_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR34F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18253_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\flyout.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21311_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sv.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\OrangeCircles.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UTC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\El_Salvador.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\SOLVER\SOLVER.XLAM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-previous-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-split.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14580_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18198_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-api.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\crashreporter-override.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sampler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME29.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\bear_formatted_matte2.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21296_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10255_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-6 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SNIPE.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-api.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\cursors.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Newsprint.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\README-JDK.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR12F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-border.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lord_Howe shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ONLINE.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\Xusage.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPL.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.password.template shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10307_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115839.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0281904.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21520_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293828.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL054.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157995.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javaws.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPMS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yakutat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21413_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRMV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanResume.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18189_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14985_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_scrapbook_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\invalid32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+4.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64_3.103.1.v20140903-1947.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN001.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14594_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\latin1.shp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+12.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400002.PNG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\kor-kor.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\scenesscroll.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ct.sym.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Manila shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\charsets.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\omni.ja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\precomplete.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-11.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21348_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSEvents.man.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LOGO98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABELHM.POC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\33.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14883_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application-views.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLIST.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21336_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionMember.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-options.jar shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\37.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrhc.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_120.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS2BARB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eu.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-image-inset.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NL.ROGERS.COM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WCOMP98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Distinctive.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART10.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_right.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL082.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21318_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149887.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR42F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\release.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21503_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBRV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_corner_bottom_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Makassar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Essential.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipshrv.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.policy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\203x8subpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301050.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hi.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234687.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.metadataprovider.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-execution.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Paramaribo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Ojinaga shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Currie shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME29.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\Filters.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Martinique shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21366_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\PingOpen.DVR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-visual.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15058_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_underline.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\excel.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\application.ini shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Amman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrlatinlm.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14801_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME47.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sampler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Budapest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SplashScreen.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginDialogBackground.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.bfc shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Dublin shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_play.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\io.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.gpd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CA.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\PMAILEXT.ECF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222021.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kabul shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XMLSDK5.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200611.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Inuvik shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196400.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZLIB.ACCDE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceSimplifiedShuangPin.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ALERT.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099179.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusDoNotDisturb.ico.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lv.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\english.lng.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21301_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_TexturedBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ko.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Denver.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART11.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18198_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ka.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18228_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityReport.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\subscription.xsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SLERROR.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115835.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.VBS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-impl.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CLICK.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\RADAR.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-previous-over-select.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightItalic.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Angles.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rainy_River shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\charsettable.chr.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierUpArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3ES.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MAIL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199727.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\STOPICON.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cambridge_Bay shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application-views.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00712_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21326_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0187423.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_hov.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\softedges.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15073_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lt.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Resolute.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONFLICT.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301076.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21339_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiBold.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BREEZE.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Ojinaga.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\validation.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.dtd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutSyncPC.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64_3.103.1.v20140903-1947.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Init.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULQOT98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Tanspecks.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Hobart.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234131.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21321_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Brunei shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.DPV shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-filesystems.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14828_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-progress-ui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\EXPLODE.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZMAIN.ACCDE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15173_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18226_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORYVERT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-cn.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-text.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\plugin.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chicago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18230_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Ojinaga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR19F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_foggy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297185.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LINEACT.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_h.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00262_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupiconsmask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\validation.js shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21312_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299611.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01805_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\id.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN108.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.catalog.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10290_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18208_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCD98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222019.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14515_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14514_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_70.png.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Hand Prints.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+3.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ext.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21448_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Gaza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxalert.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME54.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21519_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mouseover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN095.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR21F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNoteNames.gpd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cancun.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS_DocLib.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montreal shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_over.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL110.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\io.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ro.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion.gta shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\CloseImport.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7B.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tt.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299125.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-print.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04269_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INDOMAIN.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115840.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.metadata.repository.prefs.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Juneau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\si.txt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-awt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Documentation.url shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyNotesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench_3.106.1.v20140827-1737.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\TitleButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\whitemenu.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\tools.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\resources.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-progress.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14868_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\alert_obj.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR35F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\La_Paz shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02755U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18190_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ca.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-spi-actions.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MANUAL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTE.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18225_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21413_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-1.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POST98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvm.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234687.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14833_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18199_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench_3.106.1.v20140827-1737.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.DOC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BlackRectangle.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115864.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\7-zip.chm.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\js\picturePuzzle.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7FR.dub.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-execution.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-tabcontrol.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif shell.bin.exe File opened for modification C:\Program Files\DVD Maker\bod_r.TTF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bn.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Makassar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18215_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\content-types.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART4.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18193_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\COUPLER.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-io-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javaws.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR14F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME13.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\NextMenuButtonIconSubpictur.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Halifax.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-delete.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\ALARM.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLIST.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14794_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15057_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\en.ttt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Accra.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURE.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WHOOSH.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\RELAY.CER.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME04.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\YEAR.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-explorer.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04332_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21481_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\msaccess.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHED98.POC shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\jaccess.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTE.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHOME.POC shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pa-in.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZUSR12.ACCDU shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Trans_Scene_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\CGMIMP32.HLP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ne.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR39F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CAMERA.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Paper.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR38F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIPC.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-dialogs.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN103.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-spi-actions.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\triangle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\osknumpad.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticattribute.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAILMOD.POC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPLTMPL.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18219_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\builtincontrolsschema.xsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115836.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WHOOSH.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageScript.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-applemenu.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222021.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Person.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185780.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\common.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234657.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Seyes.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Matamoros.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\redmenu.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234687.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-tw.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBCOLOR.SCM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME44.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jvm.hprof.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME12.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sv.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-coredump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\TexturedBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MARQUEE.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UTC.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mn.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21328_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)alertIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-12.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS9CRNRH.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285698.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-loaders.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME01.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR41F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14983_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\dotsdarkoverlay.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_LightSpirit.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.DPV shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15171_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-io.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME37.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\updater.ini shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionMember.ico shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR15F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_it.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR12F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212701.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.ES.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Prague shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDEC.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-3.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)redStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-3.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\CHICAGO.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core-windows_visualvm.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR13F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-ImageMask.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME02.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wake.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\6.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\APPLAUSE.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212661.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21481_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiling.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Graph.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\xul.dll.sig.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Budapest.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.XML shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-cn.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SNIPE.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205466.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR22F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14868_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_corner_bottom_right.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21333_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME47.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115866.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\GreenBubbles.jpg shell.bin.exe File opened for modification C:\Program Files\Common Files\System\msadc\handsafe.reg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-uihandler.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR16F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Country.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115855.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14578_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1036\MSO.ACL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\bin\1033\FPEXT.MSG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15056_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293570.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10268_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME51.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\charsets.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rainy_River.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL107.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME55.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XLCPRTID.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-io-ui.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACC.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18212_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_Off.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\images\bing.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MY.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\omni.ja shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21504_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OFFLINE.ICO shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\THANKS.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10335_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Omsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\application.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN103.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7ge.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02464_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\hprof-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-plaf.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR38F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL093.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticattribute.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199549.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.PPD shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionOwner.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansDemiBold.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UTC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21322_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSO0127.ACL.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-options.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\tzmappings.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURE.CFG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-execution.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveResume.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD98.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Palau shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-queries.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_floating.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\CLNTWRAP.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7ge.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196374.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-text.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\msaccess.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCTBOX.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Bissau shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Lagos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-ui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierUpArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PRODIGY.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-13.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Godthab.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\host.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\RestartLimit.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SHARING.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\203x8subpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_GreenTea.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.Xml.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\PersonalContact.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GreenTea.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME04.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceAmharic.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.DOC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OrielFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15302_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tehran.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14768_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\README.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-loaders.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18206_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ru.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WZCNFLCT.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15135_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\br.txt shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mk.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21534_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-utilities.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15023_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engdic.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\currency.data.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART8.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng2.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18237_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN058.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18200_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115844.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18190_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Araguaina.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME34.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterApplicationDescriptors.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackground.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15172_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7ES.dub shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR41F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_INTRO_BG_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2XML.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\navBack.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\scene_button_style_default_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZDAT12.ACCDU shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OUTGOING.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\release.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\El_Salvador shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03236_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART1.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\blackbars60.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.ibm.icu_52.1.0.v201404241930.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\flight_recorder.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14792_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Perth.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTES.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Oslo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Maldives.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-previous-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\local_policy.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UCT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN089.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR16F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITY.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME24.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\YEAR.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBARV.POC.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOML.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTEAR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_resources14.xss.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INCOMING.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10267_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\DESIGNER.ONE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0335112.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-queries.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxalert.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0230876.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Whitehorse.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS53BOXS.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-heapwalker.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Elegant.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN027.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Winnipeg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152606.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\plugin.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285926.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL096.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierCloseButton.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Default.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15185_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSansBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00478_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageScript.js shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\et.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MX.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engidx.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mouseout.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Cairo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zurich shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLTS.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\management.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-core-kit.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh89.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL095.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGHEADING.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mousedown.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsnor.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\rt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MYSL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21323_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305257.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.Xml.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL001.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233665.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00513_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\UTILITY.ACCDA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sendopts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Couture.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\attention.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\tools.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21319_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199283.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-progress-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21307_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME32.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Groove Starter Template.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\ConnectRead.svg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02125_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.OPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-modules-profiler_visualvm.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBAR11.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15184_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANINST.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME34.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10266_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.Runtime.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMASTHD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBRV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00152_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHOME.POC.32aa shell.bin.exe File opened for modification C:\Program Files\UnblockStep.wma.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251871.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2A.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115865.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVTEL.DIC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Documentation.url.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Whitehorse shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\DefaultBlackAndWhite.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Sydney.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_hov.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-horizontal.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21338_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN027.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Malta shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15272_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\snmp.acl.template shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107280.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME39.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233018.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-dialogs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB7.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignleft.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+6.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\simplexml.luac.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayman shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME19.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR26F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04108_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103058.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WZCNFLCT.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLBAR.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Brunei shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-impl.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR40F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL104.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_few-showers.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Wrinkled_Paper.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-spi-actions.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\whitemask1047.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\file_obj.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-snaptracer.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+7.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Paris shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21309_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_rainy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Srednekolymsk shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sendopts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nassau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\platform.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24Images.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14768_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sitka shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBHW6.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RCLRPT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\US_export_policy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03012U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Graph.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Center.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL075.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_PreComp_MATTE_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vilnius.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00809_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Merida.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10268_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bogota shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESN.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_italic.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\RPT2HTM4.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115856.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.metadataprovider.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hovd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14530_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WZCNFLCT.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21435_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\macroprogress.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21332_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\split.avi shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\localedata.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Iqaluit shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250504.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14792_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR33F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\UnblockStep.wma.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+11 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Manaus shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONGuide.onepkg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240695.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBARV.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF shell.bin.exe File opened for modification C:\Program Files\RenameClose.tiff.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Christmas.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Month_Calendar.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-output2.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-keymap.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push_title.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dushanbe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+3.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apothecary.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105238.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7FR.dub shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME03.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQ.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiItalic.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jawt_md.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActions.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LOGO98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX.ECF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonInset_Alpha2.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEMS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\UnlockApprove.rar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup-impl.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMES.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3ES.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7ES.dub.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.Xml.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18236_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14677_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREST.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-io.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233070.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL044.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\decorative_rule.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\WET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spl.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\EquityFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-api.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Sign.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN108.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBAR11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\ConnectRead.svg shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\setup.chm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10256_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QUIKPUBS.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18196_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115835.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadata.xsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216588.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Atikokan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149481.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\LICENSE shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-progress.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-util.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285698.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendtoOneNoteFilter.gpd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15169_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21340_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14795_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mouseout.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115864.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fa.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3EN.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21321_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-loaders.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPML.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Fancy.dotx shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-image-mask.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-2.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183290.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL058.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll.sig.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Scene_loop.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Creston.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Hobart.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-actions.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-options.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\snmp.acl.template.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR20F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_WMC_LogoText.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-10 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_TexturedBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\slideshow_glass_frame.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS4BOXES.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.actionProvider.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\GRAY.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICTPH.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_MATTE_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15173_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239951.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ReadMe.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\add_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Halifax shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14790_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21399_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FORM.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02435_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\af.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REC.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ja.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ADRESPEL.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152722.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\english.lng shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Foundry.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24Images.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Premium.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVZIP.DIC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18241_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-remote.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Newsprint.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Colombo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageSlice.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREST.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_windy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\da.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightItalic.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Asuncion.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.NZ.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Discussion.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\HAMMER.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\CHEVRON.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OFFLINE.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME14.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14871_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\splash.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Riga.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql90.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH2.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-common.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Charitable Contributions.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XML2WORD.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_foggy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-heapdump.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18192_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusOnline.ico shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\InfoPathWelcomeImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROG98.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21519_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\settings.js shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR23F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18251_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mouseover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-13.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XLMACRO.CHM shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\view.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OFFLINE.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240719.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\IntroducingPowerPoint2010.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR25F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\en-US\eula.rtf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FEZIP.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hardware Tracker.fdt shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\VideoWall\203x8subpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-core.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187863.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149407.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-execution.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSO0127.ACL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18221_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21482_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\form_edit.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.JP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+3 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSClientManifest.man.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_altgr.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222015.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14870_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF shell.bin.exe File opened for modification C:\Program Files\UnlockApprove.rar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14867_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\To_Do_List.emf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHPHN.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\new-trigger-wiz.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Curacao.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\New_Skins.url shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR21F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\COUPON.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR30F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18232_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Denver.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Eucla.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-1 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02276_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107130.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21319_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18256_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGNHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql70.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRMV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kamchatka.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME15.CSS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multitabs.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MY.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21366_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_pressed.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_flyout.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hong_Kong.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Rome.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wake.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\GWE.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21334_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293844.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-attach.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\rt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianReport.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Stanley.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15273_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106124.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239953.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Empty.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Athens shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\it.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-12.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MAIL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE11.POC shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\calendar.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-progress-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR30F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\shuffle_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\attention.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21329_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrcommonlm.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL107.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\meta-index shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\MLA.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\omni.ja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thule.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sampler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00052_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14980_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10254_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL058.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\charsets.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21533_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216858.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+11 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEM.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDownArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\grvschema.xsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115855.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STRBRST.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-charts.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-execution.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\weather.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10336_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14997_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-windows.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Training.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Technic.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Stucco.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Havana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186002.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301252.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-io.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21329_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195384.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ext.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690Nmerical.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\SERVWRAP.ASP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Perf_Scenes_Mask1.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Anchorage.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ARFR\MSB1ARFR.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\UTILITY.ACCDA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku-ckb.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORMCTL.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kk.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Init.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14833_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sendopts.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\flyoutBack.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_SlateBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXPTOOWS.XLA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Bissau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21297_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipssrl.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB8.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javafx.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mn.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\timeZones.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0278882.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Init.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Executive.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\YEAR.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME21.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_mainImage-mask.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21512_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL089.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21298_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14531_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CA.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\REPTWIZ.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lij.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-spi-quicksearch.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFTMPL.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Edmonton.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01297_.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\colorcycle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\COPYRIGHT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01777_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\send-email-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0215086.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ta.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Toronto.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Merida shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js shell.bin.exe File opened for modification C:\Program Files\Common Files\System\ado\adojavas.inc shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-modules-appui.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Maputo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-loaders.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0098497.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15136_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL012.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEMS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TITLE.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\CGMIMP32.HLP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME22.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301076.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14692_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\COMPUTER.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked-loading.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115834.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.XLS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadata.xsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\cacerts shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guam shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ADO210.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSQRY32.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14793_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14529_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02074U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_VideoInset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPreviewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00915_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+1.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCINFO.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\README.TXT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-fallback.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Beirut.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\UrbanFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\PST8PDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Atikokan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-12 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\sandbox.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Jamaica shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01793_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MSTHED98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\COMPUTER.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIP.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\STSLIST.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR30F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng2.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00132_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198234.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\numbers.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiling.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21504_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105396.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ct.sym shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME43.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Traditional.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackground.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10299_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN022.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETLG.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\th.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\OliveGreen.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosefont.gif shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ky.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Antigua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEM.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDownArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\is.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02124_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Iqaluit.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301252.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipscht.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsrus.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\cursors.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196060.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Civic.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292982.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.BR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-plaf.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Northwind.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cy.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115876.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18220_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR37F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106020.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21300_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-api.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\management.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Winamac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\34.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_rainy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\day-of-week-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR35F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MAIL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7fr.kic shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153095.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15060_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\artifacts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Davis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECS.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR39F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01238_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14594_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS2BARB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\MMHMM.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\17.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\meta-index.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\classes.jsa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvmstat.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15171_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21301_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18245_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\local_policy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230553.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bangkok.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Accra.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14832_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.XML.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyScenesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core_visualvm.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\FAXEXT.ECF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR15F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kosrae.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INCOMING.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SWBELL.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-fallback.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jce.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18185_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLY98SP.POC shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku-ckb.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0315447.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\folder.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SAMPLES\SOLVSAMP.XLS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\FONTSCHM.INI shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR20F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0295241.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14529_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\splash.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR37F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME27.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21422_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297749.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonDown_On.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsScenesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-views.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\FiveRules.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR39F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229389.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZTOOL.ACCDE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Resolute.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\COIN.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21348_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\SR\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-heapwalker.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21334_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuala_Lumpur.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_flyout.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SNET.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jce.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ADRESPEL.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfxrt.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+9.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiItalic.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21390_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART11.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-search.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18253_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierCloseButton.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lij.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP shell.bin.exe File opened for modification C:\Program Files\UnblockStep.wma shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21335_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\oledbjvs.inc shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\flyout.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\London.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01146_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01759_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Asuncion shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN048.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sendopts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayenne.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_VelvetRose.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\el.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18220_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.policy shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18253_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.exe.sig.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-2.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.BusinessData.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\PMAILEXT.ECF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21427_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\OliveGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLTS.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR17F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiling.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Managua.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0211949.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10289_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-spi-actions.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME26.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-8.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uk.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Hermosillo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART9.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OMML2MML.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTVIEW.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-views.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sitka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01169_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\3RDPARTY shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ashgabat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\7-zip.chm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\chimes.wav shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14711_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24Images.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Cairo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\rt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.service.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.ES.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149887.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18180_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_TW.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-2 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QUIKPUBS.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART7.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SpaceSelector.ico shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.PPT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15018_.GIF shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\Timeline.cpu.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15275_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+5 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Apia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300520.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART3.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusOnline.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00255_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Traditional.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\currency.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fy.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\ATPVBAEN.XLAM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\APA.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMES.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115836.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bg.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\CGMIMP32.HLP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Damascus shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\time-span-16.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-impl.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09031_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21303_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Denver shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion.gta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR41F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18201_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN065.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guatemala shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18194_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10307_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montevideo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REC.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\cpu.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\IntroducingPowerPoint2010.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL026.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPrintTemplate.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\splash.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01905_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-queries.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ORIG98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00014_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\id.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jmx.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21306_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB02229_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01330_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Slipstream.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiling.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BLANK.ONE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Solstice.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Fortaleza shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Opulent.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\La_Rioja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\validation.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_down.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS9CRNRH.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ja\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21315_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR16F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROG98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\specialoccasion.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImages.bmp shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216588.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\Components\SignedComponents.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00734_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Earthy.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21305_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196400.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR33F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21338_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\27.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.VBS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332268.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Antigua.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18248_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Horizon.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mr.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+6.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.access.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionOwner.ico shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_ja.jar shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Memo.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Marengo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\day-of-week-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\RADAR.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\AUTHOR.XSL shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOC.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15020_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\Whistling.wav.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\StopIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\timer_over.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251925.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+1.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304853.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\St_Johns shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR27F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Riga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ONLINE.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21310_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\auxpad\auxbase.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\pss10r.chm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\ConnectionManager.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR38F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297749.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POST98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XLCPRTID.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Init.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18231_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-next-over-select.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10300_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_es.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ast.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105348.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BAN98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00265_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad\ea.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME37.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14981_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293238.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18203_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15156_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyrun.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14532_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDBAR98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151581.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\Welcome.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\css\calendar.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\UrbanFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14790_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01308_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14997_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREET11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105414.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_select-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Earthy.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Bibliography\BIBFORM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15276_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28F.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pl.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216724.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18214_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Blanc-Sablon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCINFO.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\circle_glass_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14581_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\spanish.lng.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7EN.dub.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0251007.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\38.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\mainimage-mask.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDEC.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOML.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multiview.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-snaptracer.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR39F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14756_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CHECKBOX.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NVBELL.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRMV.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CET shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImages.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Stars.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Jujuy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMAIN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sa.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\install.log.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_rest.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00172_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jni.h shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSEvents.man.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\LimitUnlock.wma shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18203_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10264_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21314_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-search.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14866_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-templates.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic 2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157763.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST5EDT.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\clock.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHPHN.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL016.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.DPV shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-7.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21296_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Init.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEML.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222017.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jawt.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfontj2d.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3B.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\curtains.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\settings.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285410.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\SendRepair.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-core.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\Notebook.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+3.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0093905.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_thunderstorm.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\diagnostic-command-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Makassar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+1 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\flyout.css shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_windy.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Page_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_rgb.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\GRAPH.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5A.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7es.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+Connect to New Data Source.odc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15019_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\REMINDER.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Full.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198712.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\White_Chocolate.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-queries.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15134_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Charitable Contributions.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Module.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRT.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232393.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0390072.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18217_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14828_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18252_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_selectionsubpicture.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_content-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285750.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_fr.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Amman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3FR.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARDHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21348_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099164.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Maceio shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205466.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18204_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.TH.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_left_hover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-actions.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14801_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14795_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\resources.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14532_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14794_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javaws.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\St_Johns.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\alt-rt.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Cairo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21433_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21512_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRMV.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Skins\Revert.wmz shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Genko_1.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-favorites.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBAD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Oriel.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18225_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightItalic.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\flavormap.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\asciieng.lng.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MML2OMML.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hy.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-plaf.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Swift_Current shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01434_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.metadata.repository.prefs.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\Welcome.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+2.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_left.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POST.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-coredump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\HORN.WAV shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt-br.txt shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_babypink_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ta.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18237_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0185604.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORM98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299587.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\content-types.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229385.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kk.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\km\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Brunei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157995.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multitabs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-ui.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Sydney.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kabul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_increaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\attention.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR10F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105292.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3B.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielReport.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\HAMMER.WAV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-hot.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dili.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME24.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART13.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\ROGERS.COM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\brx\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\TOOT.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Simferopol shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cambridge_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\send-email-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292982.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-image-mask.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Sydney.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\main.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.VN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157995.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginDialogBackground.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL090.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\ManagedObjects\SignedManagedObjects.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21505_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_ring_docked.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\picturePuzzle.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187921.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_choosefont.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18244_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\title_trans_scene.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendtoOneNoteFilter.gpd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01852_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Toronto shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Modern.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RES98.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-api.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-2.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN022.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21332_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384895.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR40F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14870_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL087.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN110.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-awt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Copenhagen.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\License.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Istanbul shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\COUPON.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\DRUMROLL.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14795_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21312_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00512_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0217698.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Trek.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL065.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298653.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183174.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN086.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21297_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baku.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHKEY.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Horizon.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santa_Isabel shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULQOT98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterApplicationDescriptors.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\VeriSignLogo.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACTIP10.HLP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\bin\1033\FPEXT.MSG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\TYPE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR21F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216570.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\History.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Cocos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL065.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02738U.BMP shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Volgograd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABOFF.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293570.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jmx.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Kerguelen.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME53.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103850.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Init.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-api.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME25.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.HK.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostTitle.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234266.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mousedown.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jvm.hprof.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OUTLOOK.EXE.MANIFEST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285444.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222017.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318448.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_de.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18185_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrhc.dat.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\be.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Beirut.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.SG.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195534.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\19.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_GreenTea.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME42.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107192.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBRV.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\dependentlibs.list.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_settings.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\12.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Formal.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.HOL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR36F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\info.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XML2WORD.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297707.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-uihandler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\LASER.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrorfromgroove.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jmx.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ReadMe.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\DESIGNER.ONE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME12.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL090.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14830_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBrowserUpgrade.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02280_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hr.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME46.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0214098.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTES.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Users.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21324_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Custom.propdesc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\WANS.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME33.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\STOPICON.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Peacock.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Groove.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Accessible.tlb.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\excel.exe.manifest shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\artifacts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR10F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mazatlan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105600.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185806.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00681_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+12.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg_orange.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\Components\SignedComponents.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engdic.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN096.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-spi-actions.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MX.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21548_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSSMS.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10336_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARD11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.DPV shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152698.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21297_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14833_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OriginFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FS3BOX.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\currency.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME30.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PG_INDEX.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Amd64\jvm.cfg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-tools.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL110.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ms.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_right_mousedown.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\profile.jfc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITY.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostTitle.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR17F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME27.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.INF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSMMS.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImages16x16.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\crashreporter-override.ini shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.IN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECREC.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152628.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UTC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\javafx-mx.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion.gta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSSPC.ECF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB10.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00476_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\COPYRIGHT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCRD98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Manuscript.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15132_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg shell.bin.exe File opened for modification C:\Program Files\7-Zip\History.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSO.ACL.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18208_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORYVERT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300840.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-heapwalker.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Issues.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupiconsmask.bmp shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\AUTHORS.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Currency Rates.iqy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR25F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\setting_back.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-explorer.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-remote.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196110.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR18F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mazatlan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfont.properties.ja.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\Bear_Formatted_RGB6_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kiev shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153508.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SPLASH.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\25.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21534_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fr.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_left_mouseover.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\attention.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mspub.exe.manifest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229389.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_travel_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\jfont.dat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Honolulu.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14514_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01627_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01304G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152882.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Miquelon.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21323_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21519_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\DenyUnprotect.jpeg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_underline.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRMV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-fallback.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\VelvetRose.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TOC98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15133_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uz.txt shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_glass_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL002.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00045_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RCLRPT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Issues.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01840_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Reykjavik.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider_right.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\alertIcon.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107458.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21304_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL026.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\LightBlueRectangle.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01637_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15171_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\GrooveFormsMetaData.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\et\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WPULQT98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL107.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSSMS.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\attention.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105846.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CASHREG.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Custom.propdesc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\SketchIconImages.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\UndoConvertTo.xltx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\chimes.wav.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.ELM shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\15x15dot.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00221_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21434_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR17F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Simple.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cs.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)alertIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02522_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01293_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196164.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gl.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\layers.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.SG.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10265_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.artifact.repository.prefs.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Prague.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion14.gta shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\tile_drop_shadow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR37F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericonMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\activity16v.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\NavigationButtonSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.attributeTransformation.exsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14583_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\va.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18256_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_150.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382966.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OMML2MML.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115865.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300912.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL093.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XLMACRO.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Malta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN102.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00704_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\rss_headline_glow_docked.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-annotations-common.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107450.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01575_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153091.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-lib-uihandler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00914_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSN.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-dialogs.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OriginFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00168_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_left_hover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\3.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novosibirsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293570.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR36F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Simple.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN081.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayman.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239975.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME49.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL010.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05870_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME16.CSS shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ast.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14870_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Module.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nome.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14530_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Classic.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2XML.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadataresource.xsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\RSWOP.icm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-favorites.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\AMERITECH.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Perspective.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYERHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\main.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7fr.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15061_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18245_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\js\cpu.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASK.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME51.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_TW.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21330_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00234_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14984_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL048.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10335_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\index.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg.32aa shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\ie9props.propdesc shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Curacao shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Adobe.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\curl-hot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301480.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FEZIP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00833_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-remote.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMAIL.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR18F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251301.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\cursors.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR32F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.KR.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticnotification.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Adjacency.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\localedata.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyReport.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382969.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143744.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+8.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME46.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\main.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\Alphabet.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21315_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\uninstall.log.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\PYCC.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18209_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\grvschema.xsd shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Paramaribo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.TW.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_specialocc_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FORM.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\REPTWIZ.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\LightSpirit.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityReport.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tbilisi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14583_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB10.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME20.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301252.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+10 shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.artifact.repository.prefs shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21400_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BDRTKFUL.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PG_INDEX.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21295_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239941.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DenyUnprotect.jpeg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21495_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RES98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216600.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TAG.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts2.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-attach.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00086_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01176_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sa.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14794_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ga.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_TexturedBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.CN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN026.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02198_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OUTGOING.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskmenu\oskmenubase.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18212_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormToolImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Casual.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01138_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205462.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183290.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240695.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Damascus.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10290_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02791_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-awt.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Generic.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\accessibility.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN020.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\dependentlibs.list.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21375_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-back-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21316_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\LICENSE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montreal.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Biscay\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORM98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN010.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02390_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Macau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-common.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15135_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00646_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\plugins.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ceuta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN026.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\THROAT.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR39F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195534.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RE00006_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TEAROFF.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14985_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)grayStateIcon.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR37F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14539_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunec.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+Connect to New Data Source.odc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBCALSO.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14793_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR13F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\HAMMER.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107496.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07831_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-plaf.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDEC.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\attention.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115875.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.IN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core-windows_visualvm.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186348.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.FR.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18181_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387882.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387895.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_few-showers.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfontj2d.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIP.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14691_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORY.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-favorites.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\release shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14769_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0230876.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hovd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEMS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10263_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.c.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nome.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSans.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Adak shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Blog.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\SwitchSkip.wm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-core-kit.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\library.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\9.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Maceio.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.TW.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00231_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Christmas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00448_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\he.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.artifact.repository.prefs.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Athens.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.Targets shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Vancouver.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALNDR98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Casual.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusAway.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTEIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR20F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGN.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01158_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Public_Primary_CA.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART14.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULQOT98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS10TARG.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\weather.js shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\46.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18244_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN108.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToNotesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.OPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14711_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MANUAL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00077_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\currency.data shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14515_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxerror.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_videoinset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18249_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0214098.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200273.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-uisupport.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21332_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGNHM.POC shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_h.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-charts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+NewSQLServerConnection.odc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01241_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00487_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ug.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL027.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_disable.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Memo.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\branding.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-keymap.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\ContentDirectory.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7MDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106222.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234131.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-uisupport.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299611.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_rest.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15277_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\et.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\SOLVER\SOLVER.XLAM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02368_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\corner.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\rings-desk.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115842.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\correct.avi shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\new-trigger-wiz.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jerusalem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sq.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\README.TXT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21305_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00236_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-outline.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Tucuman.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ga.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Waveform.thmx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.catalog shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB4.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02041_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL103.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfont.properties.ja shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195384.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fur.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSansBold.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-1.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_de.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN095.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-util-enumerations.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Formal.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\GWE.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+9 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-awt.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14844_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18249_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\br.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL087.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299125.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusAway.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15184_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\sRGB.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOff.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690Nmerical.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Reunion.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR40F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21535_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDBAR98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\validation.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\COPYING.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME41.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16Images.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupiconsmask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212219.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uk.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.PH.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293844.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+12 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1036\MSO.ACL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\EquityFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0287005.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03224I.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18185_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02062U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Waveform.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application-views.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0315447.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dubai.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212701.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\CALENDAR.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Sand_Paper.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235241.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\RSWOP.icm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7en.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.DOC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2String.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199283.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299587.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\BodyPaneBackground.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREST.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7jp.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZTOOL.ACCDE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvmstat.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tijuana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-services.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTEL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASK.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\omni.ja.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Perspective.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsImageTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105320.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2B.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\LASER.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ceuta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Amman.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSPUB.TLB.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART14.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\PersonalContact.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montreal.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\rt.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Newsprint.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\invalid32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cuiaba.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME11.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Monterrey shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTIT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL106.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kabul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18187_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089992.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14769_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00438_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DOTS.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_choosecolor.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN090.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jvm.hprof.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Eirunepe shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15060_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICSTYLES.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\TALK21.COM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01039_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kk.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote-PipelineConfig.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239967.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_120.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ct.sym.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-plaf.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187881.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\jaccess.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CASHREG.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\crashreporter-override.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME40.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0300862.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME54.CSS shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core_visualvm.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfontj2d.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieNewsletter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Bissau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST7MDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanPhotoAlbum.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOT.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESP98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN044.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Asuncion.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115843.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\spanish.lng.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15057_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\cronometer_dot.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14753_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL082.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21313_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-attach.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR29F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18218_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00268_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\GoldRing.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSSKETSM.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-dock.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQ.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Foundry.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3ES.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR16F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199661.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18213_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREET11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiBold.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\chimes.wav.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FEZIP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01770_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR11.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285698.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-coredump.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00238_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18248_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\menu_arrow.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\COUPLER.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-14.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImages.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\title_trans_notes.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guayaquil.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadataresource.xsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Los_Angeles shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_italic.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMain.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tripoli.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292982.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-core.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Pangnirtung.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\COIN.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Madrid.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Paramaribo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Moscow.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs-nio2.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Monaco.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts2.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL097.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105368.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.SharePoint.BusinessData.Administration.Client.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Apia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00241_.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\blocklist.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\mc.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sa.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14693_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\et.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsVersion1Warning.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Havana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+2.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293832.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_postage_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01635_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STRBRST.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14996_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eo.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as80.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\updater.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103812.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\RICEPAPR.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187893.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerEvaluators.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105280.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-templates.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-threaddump.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Chita shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\french.lng shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\5.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\COMPUTER.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Connectivity.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.security.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR10F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105266.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\flight_recorder.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14882_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Chita.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Adobe.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\Xusage.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\selection_subpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14832_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\highlight.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsNotesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTEL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME23.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14693_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03425I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBEMAIL.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\CAN.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240719.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.OPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02233_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00252_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02398U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.DPV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18197_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183328.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sampler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01191_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152696.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Currie.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.UK.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceArray.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Casual.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21399_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL111.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mexico_City.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICCAP98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\jhall-2.0_05.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Martinique.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART15.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21370_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\babyblue.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199469.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Simferopol shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRMV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sampler.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRM.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106146.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\rollinghills.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\10.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHED98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01462_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ja.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15172_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.properties.src shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Irkutsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR11F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_center.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302953.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5A.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\calendars.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090089.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199036.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrusalm.dat shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Edmonton shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\HST.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AIR98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SpaceSelector.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\1033\ADO210.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196164.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-favorites.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CST6CDT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belize.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02278_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.exe.sig.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-progress-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-charts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN054.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Groove.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199727.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\cacerts.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\file_obj.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\AUTHORS.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Toronto.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198025.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\AUTHORS.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME09.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR12F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hi.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\scrapbook.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTOPENWORLD.COM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0304933.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kaa.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Almaty shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222017.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSO0127.ACL shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\settings.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198022.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\charsettable.chr.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115863.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10358_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerEvaluators.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-templates.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\AddMeasure.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR10F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\reflect.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18255_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL086.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14691_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SWBELL.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\diagnostic-command-16.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21339_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-progress-ui.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14980_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\va.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\HST shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBCOLOR.SCM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115839.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL102.XML shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ga.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLEX.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01548_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Glace_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBEMAIL.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_SlateBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\CLNTWRAP.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR12F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_selectionsubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01044_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WPULQT98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14996_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187839.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\UrbanFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Slipstream.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10297_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Executive.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_divider_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Adobe.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Antigua shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\msaccess.exe.manifest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00784_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ContactSelector.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152890.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ru\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+8 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chihuahua.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOVEL.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ru.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-disable.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Earthy.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-previous-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART12.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01164_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\License.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305257.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02040U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR40F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Pushpin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107526.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\LASER.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\charsets.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-text.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-tools.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuching.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14871_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\oledbvbs.inc shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00090_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javafx.policy shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-lib-uihandler.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\classes.jsa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21308_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\glass.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195812.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\System\msadc\handler.reg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14869_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_divider_right.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\15.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\content-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\jni_md.h shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\bin\jmc.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hebron.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251925.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hu.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieNewsletter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183290.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\settings.css shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\btn-next-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR19F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS53BOXS.POC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18209_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CONTACT.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_highlights_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_CN\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR37F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-heapwalker.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-tools.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00152_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10264_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01568_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt-br.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ho_Chi_Minh shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Country.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-spi-quicksearch.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Hobart shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToScenesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-6.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Darwin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14845_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14867_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Formal.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\release.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18223_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Menominee.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFRES.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTL.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-settings.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\jfont.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tt.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Managua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Metlakatla.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185670.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL083.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\OliveGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WCOMP98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SUBMIT.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0185604.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_top.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\rt.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\omni.ja.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_uparrow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Helsinki shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0211949.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229385.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099153.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02223U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\delete.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDCNCL.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tabs.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14531_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ant-javafx.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Caracas.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Cocos shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImage.jpg shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0291794.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SAMPLES\SOLVSAMP.XLS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286034.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286034.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-11.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICTPH.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Curacao.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Karachi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\US_export_policy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.dtd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\EDGE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\blacklist.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297749.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OEMPRINT.CAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericon.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Phoenix shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-cli.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-print.xml shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\update-settings.ini shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\SIGNUP\install.ins shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02448_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dili shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST5EDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mazatlan shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Chisinau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107328.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387604.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199755.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNoteNames.gpd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183328.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Metlakatla.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\HST10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BloodPressureTracker.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\pushplaysubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\TOOLICON.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00199_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spl.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Niue.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\WARN.WAV shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\CHICAGO.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099176.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18181_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Clarity.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICCAP98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+4.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21400_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SketchPadTestSchema.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Samara shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\BG_ADOBE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18246_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Graph.exe.manifest shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB6.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\NextMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Matamoros shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18227_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98SP.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\console_view.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\hprof-16.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115868.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.dtd shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_ja.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AU.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Miquelon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ALERT.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01218_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\VelvetRose.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Classic.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222015.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00402_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-execution.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\currency.data.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Dublin.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01183_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN054.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\back.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01213K.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-dialogs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18239_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199036.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Managua shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_REVIEW.XSN.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01148_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15023_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ARFR\MSB1ARFR.ITS shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_lrg_sml.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rio_Branco.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15274_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18257_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ModifiedTelespace.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jconsole.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\ELPHRG01.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL010.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Notes_loop_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15136_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Macau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGHEADING.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18216_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bn.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216612.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterToolTemplates.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Clarity.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Hermosillo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Issue Tracking.gta shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\WHOOSH.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21495_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\jaccess.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-4.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME26.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107746.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1B.BDR shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sl.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL087.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00297_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107282.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_rest.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\La_Paz shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15170_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOVEL.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF shell.bin.exe File opened for modification C:\Program Files\TestResolve.3gp2 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18222_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00110_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XLCPRTID.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Mendoza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21302_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-13.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterBold.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kamchatka shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SplashScreen.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21333_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\local_policy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Simple.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Nairobi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239057.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sampler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Vancouver shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\http.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SlateBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME10.CSS shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL097.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14882_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME14.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-explorer.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\nav_leftarrow.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN107.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVTEL.DIC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Chita.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-12.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107154.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsita.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-heapdump.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR21F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_03.MID shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sitka.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXPTOOWS.XLA shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\content-foreground.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01140_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\SIST02.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Noronha shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Vancouver.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18223_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsnld.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18248_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\VCTRN_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACCESS12.ACC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Barbados.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RSPMECH.POC.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIP.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.HTM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Beirut shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.RuntimeUi.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7db.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18201_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sa.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javafx.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14580_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME42.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Rothera shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanPhotoAlbum.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiItalic.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285410.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ast.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActions.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management-agent.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBAD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN011.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\calendars.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Complete.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14830_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePageStyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\menu_style_default_Thumbnail.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACTIP10.HLP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Elemental.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\flyout.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CLICK.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR27F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Perspective.dotx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105288.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Dublin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Monticello.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Country.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2A.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipscsy.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00333_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\System\msadc\adcjavas.inc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282928.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Shorthand.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vevay shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21337_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\HST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN111.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ne.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Winnipeg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\builtincontrolsschema.xsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBlankPage.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Detroit.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-core.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\crashreporter.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-snaptracer.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTEL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME48.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR29F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-5 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\GRAY.pf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME40.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287019.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-7 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15302_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\RPLBRF35.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCSBAR.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\plugin-container.exe.sig.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\BlockHide.rle shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.HK.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Thatch.eftx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DOTS.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\DefaultBlackAndWhite.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN095.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\snmp.acl.template.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\pss10r.chm.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryResume.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Monrovia shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.H shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18180_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200289.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.PH.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21340_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195248.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384888.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN109.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285360.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\classlist shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\ATPVBAEN.XLAM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ne.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_it.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\FONTSCHM.INI.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\La_Paz.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18214_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\localizedSettings.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASK.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18210_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB6.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-io.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\WHOOSH.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00693_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Minsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15135_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252629.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\lookup.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWSHM.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\localedata.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SHARING.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME10.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\br\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187861.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15057_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterToolTemplates.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WSIDBR98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART12.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench_3.106.1.v20140827-1737.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSQRY32.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\EUROTOOL.XLAM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.INF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-io.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\meta-index.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AIR98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_few-showers.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ja_JP.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Mawson shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\2.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sampler.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14594_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233992.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.UK.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14982_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CAMERA.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfxrt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Eirunepe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\GMT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01639_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\Parity.fx shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_Off.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PAPERS.INI shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285410.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14791_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18232_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Anchorage shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Marquesas.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_dot.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\greenStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-javahelp.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02754U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataViewIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR40F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color120.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152694.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Curacao.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\vlm_export.html.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_Buttongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10268_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Detroit.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\Passport_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nipigon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chatham shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21527_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-modules-appui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115868.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ba.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21365_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18234_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Paper.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10254_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00017_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.SE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\COIN.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-common.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackground.jpg shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\cacerts.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qyzylorda shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOML.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Colombo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTEL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Dublin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00414_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10298_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jmx.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\attention.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLIP.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01661_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198494.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Noumea.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01216_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MET.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\MMSS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieResume.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01041_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02082_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WIND.WAV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\31.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Black Tie.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.SharePoint.BusinessData.Administration.Client.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18250_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Earthy.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\cloud_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Scoresbysund.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18234_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UCT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME18.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01006_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-tabcontrol_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7jp.kic.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uz.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\library.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UCT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color32.bmp shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\4.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00489_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\LICENSE shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-util.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-charts.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00319_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216858.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\accessibility.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multiview.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL1.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18226_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\THROAT.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\44.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18211_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvmstat.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kiritimati.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232795.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\6.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME38.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Composite.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239955.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDCNCL.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Apex.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1B.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18235_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152704.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-3 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\common.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102594.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-today.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPML.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKUPD.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_windy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\dnsns.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\vistabg.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00768_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14578_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\MLA.XSL shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_left.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\travel.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-visual.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\RELAY.CER.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ug.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR36F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_right.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Stockholm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\New_York shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrortogroove.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14580_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\WHOOSH.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.UK.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Eucla shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\203x8subpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02097_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_videoinset.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10253_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.BR.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02270_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mahe.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESP.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02028_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BAN98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18187_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EET shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-settings.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLBAR.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297185.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DissolveAnother.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHDHM.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-execution.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149481.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\resources.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\SIST02.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTINTERNET.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR10F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Angles.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14756_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\youtube.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_OliveGreen.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GreenTea.css.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\40.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEMS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\winamp2.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR17F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\Common.fxh shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL106.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\MedianFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMARQ.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\next_rest.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunec.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL002.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14983_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CAMERA.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMAIN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_VelvetRose.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18227_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301044.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME40.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Anchorage.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7ES.dub.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gl.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21331_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\blacklist.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-utilities.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-coredump.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-14 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.HK.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14996_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Barbados shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsPreviewTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SAMPLES\SOLVSAMP.XLS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\management.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_INTRO_BG.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01141_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Chagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Monet.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\LICENSE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02268_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ar.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\Hierarchy.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\ja-jp.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\144DPI\(144DPI)greenStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrvc.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21338_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grid.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\uninstall.log shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\access-bridge-64.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01237_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216724.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\host.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18239_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_italic.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10302_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\alt-rt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151041.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02465_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kiritimati.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21512_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00932_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSN.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\ParentMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR20F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18180_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROG98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_blue_snow.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\La_Rioja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\HST10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN01165_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01785_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\Messenger.xml.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Ushuaia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Complete.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTFORM.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dialdot_lrg.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Sydney shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10267_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-uisupport.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.MX.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14753_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC2.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00538_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\Modules\httprequests.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-settings.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CLICK.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NL.ROGERS.COM.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.PPT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME13.CSS shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.access.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-uisupport.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01849_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS2SWOOS.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\index.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400001.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfont.properties.ja.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14866_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\NEWS.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+7.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-uisupport.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Recife.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215076.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21299_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10265_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsFormTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00438_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06102_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-search.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBOB6.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveNewsletter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTBOX.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18198_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199805.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\32.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOATINST.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Roses.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Paris.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18191_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02288_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107264.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14710_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tunis.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14654_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application-views.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02578_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WNTER_01.MID shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_m.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-output2.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_pressed.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\HandPrints.jpg shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\content-background.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15276_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FS3BOX.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Stars.jpg shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\settings.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bangkok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00633_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229389.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-14.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10263_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceYi.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\30.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Regina.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105380.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18204_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL108.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14516_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14754_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\info.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh87 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\blacklist shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0280468.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Costa_Rica shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15019_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\attention.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01560_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CHECKER.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Newsprint.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Oral shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00305_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Hardcover.xml.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-border.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME45.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\COPYING.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21304_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICSTYLES.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.CNT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSMMS.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL109.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14582_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21527_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300840.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00345_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10335_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02794_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\js\settings.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR24F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCTBOX.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NBOOK_01.MID shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-threaddump.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107316.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\47.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01750_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\UndoGroup.xlsb shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ko.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-text_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javaws.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\localedata.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_disabled.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME18.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Modern.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21313_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02153_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216588.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\console_view.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21311_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\az.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMEE.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN048.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mk.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3FR.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_LOOP_BG.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199805.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+12.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3EN.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMES.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297759.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs-nio2.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21337_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0304933.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Bears.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00525_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00034_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16Images.jpg shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tr.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152892.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\es.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21548_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215210.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21400_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10308_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jvm.hprof.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR38F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\rt.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-charts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241781.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Accessible.tlb shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\45.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02413_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\be.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\LINEAR_RGB.pf shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Taipei shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\yo.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\3082\MSO.ACL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR1B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSEvents.man shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GR8GALRY.GRA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SketchPadTestSchema.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Adelaide shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Sofia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSO.ACL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME06.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR29F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14790_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bogota.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21366_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21518_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATE.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup-impl.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFTMPL.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL022.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guam.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\MedianFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00468_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149407.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\QuestionIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_jpn.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Document Parts\1033\14\Built-In Building Blocks.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14710_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL078.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4ADT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActionExceptionHandlers.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7MDT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Graph.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Niue shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\platform.ini shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Atikokan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Samara.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITY.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_VelvetRose.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21322_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-nodes.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME03.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0284916.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\is.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR26F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-next-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIcon.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107364.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hi\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\ARROW.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMaskSmall.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18201_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5B.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\defaults\pref\channel-prefs.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zaporozhye.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10256_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216516.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sendopts.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_04.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_es.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105332.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielMergeFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Verve.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18217_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099163.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_videoinset.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\row_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21434_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Ojinaga.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-actions.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\NetworkServerControl.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile.html.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-US\js\calendar.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageSlice.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL110.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\cacerts.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02453_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\profile.jfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199609.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-attach.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02093_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL093.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN096.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\HORN.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15274_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21325_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_italic.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR12F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01473_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00396_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\css\settings.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieResume.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIPC.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\logging.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.WPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\11.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveNoDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\flavormap.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115843.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL077.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY2.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\TALK21.COM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB8.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02412K.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CA.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ORIG98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198226.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18184_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105384.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187883.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\SR\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01630_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPM.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216516.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Khandyga.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuching.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Person.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN082.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153516.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SlateBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR42F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18210_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00222_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\back_lrg.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainToNotesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belem.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PNCTUATE.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCallbacks.h.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\he.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285462.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SlateBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21300_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-services.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\Microsoft.Office.InfoPath.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00526_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR11F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00483_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\VOLTAGE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ba.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\equalizer_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299763.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21300_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21302_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MARQUEE.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SUBMIT.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yerevan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME31.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00330_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hr.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Austin.thmx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.RuntimeUi.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Sakhalin.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Riga shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106572.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MET shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21320_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Concourse.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\bin\1033\FPEXT.MSG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199307.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\th.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.JP.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090149.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\flavormap.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Petersburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management-agent.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01761_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FS3BOX.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00433_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0291984.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02724_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233018.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-4 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\ACADEMIC.ONE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-oql.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21327_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.PPD.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301050.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\43.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sao_Paulo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21316_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183574.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01160_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02386_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME49.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nassau shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvm.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\net.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\derby_common.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN075.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POST98SP.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR23F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00068_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-sampler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_right_hover.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01244_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+1 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298897.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR11F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188587.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Menominee.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-queries.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00625_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00578_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color120.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTEAR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198372.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING1.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\button-bullet.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01126_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR22F.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Monaco shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-uihandler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\profile.jfc shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-snaptracer.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\builtincontrolsschema.xsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apothecary.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Efate.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\ELPHRG01.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL103.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\New_York shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00998_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\hint_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Vilnius.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME06.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14769_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB9.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignright.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\it.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONFLICT.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBCOLOR.SCM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\Tulip.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Moncton.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESEND.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\VeriSignLogo.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\SketchIconImages.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Pangnirtung.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232171.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guyana.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21421_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-attach.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Monaco.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00612_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\timer_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00505_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21433_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Jamaica.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-progress.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL095.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHLEX.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\form_edit.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Page.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\tile_bezel.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_it.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\de.txt shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mk.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\GIGGLE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0283209.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectToolsetIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_underline.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Thatch.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN105.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Category.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OMML2MML.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-sendopts.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02120_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\RPT2HTM4.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21307_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-tw.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-cli.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME25.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292152.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia_Banderas.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15302_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\MediaReceiverRegistrar.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Andorra.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\co.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jmx.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SEARCH.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Monterrey.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\INDUST.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00256_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\COPYING.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.descriptorProvider.exsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Ndjamena.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Panama.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Reunion.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Perspective.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Groove.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-tabcontrol.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-oql.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LOGO98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Seoul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\RedistList\FrameworkList.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02092_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04225_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18189_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrowMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_OliveGreen.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\whitevignette1047.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME30.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199549.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04174_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB11.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Amd64\jvm.cfg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\SwitchSkip.wm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Davis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvm.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105388.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ONLINE.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251925.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14582_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01268_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090027.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pago_Pago.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBENDF98.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cs.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL010.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SplashScreen.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234000.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-text.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\lookup.dat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00452_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21503_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Equity.thmx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSans.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\RECYCLE.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_left_disabled.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Majuro.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qatar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.POC shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\STUDIO.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152594.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21427_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chicago.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrowMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR51F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\COUGH.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00720_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImages16x16.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Makassar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Goose_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00269_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18229_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-uisupport.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15185_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvm.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-3 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090390.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-queries.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02371_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15072_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-spi-quicksearch.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POST.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART3.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\flavormap.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL001.XML shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\de.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14514_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\macroprogress.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298653.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-heapwalker.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\an.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21364_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21375_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099183.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passportcover.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR20F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME53.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Anchorage.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wake shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OSPP.VBS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02897J.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14829_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387337.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02252_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\or\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143750.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305493.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195254.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10219_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7en.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\js\settings.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-7.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\btn-back-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSClientManifest.man.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199303.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02116_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Panama shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR14F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48B.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericonMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Montevideo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tehran shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+8.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\System\msadc\adcvbs.inc shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\ParentMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Earthy.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\London shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15169_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Costa_Rica.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00178_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_LOOP_BG.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mahe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18204_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14754_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR15F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14757_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10301_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDownArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00202_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYERHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO11.POC shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guayaquil shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Premium.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME35.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00636_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10302_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waning-gibbous_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18257_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eo.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\FlickAnimation.avi shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BCSClientManifest.man shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01184_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10266_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\DefaultBlackAndWhite.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\settings.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-cli.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00367_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00524_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\GWE.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0287005.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086424.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_bullets.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\Notebook.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00685_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00780U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME43.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCH98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.BusinessData.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\plugin.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-windows.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-first-quarter_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\DvdTransform.fx shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\da.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-explorer.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15134_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297551.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00603_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote-PipelineConfig.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\validation.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL105.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00078_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157167.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0158007.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_snow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.descriptorProvider.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\content-types.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BOAT.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\SERVWRAP.ASP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\ROGERS.COM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_rainy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143752.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-outline.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01168_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21398_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Resolute.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsVersion1Warning.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\Microsoft.Office.InfoPath.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLY98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Generic.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\Notebook03.onepkg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14528_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234266.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Casual.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Taipei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSOSEC.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\US_export_policy.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\El_Salvador.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\accessibility.properties shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-common.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\LICENSE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18192_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\validation.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\auxpad.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kosrae.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Rangoon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR21F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Issue Tracking.gta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.DPV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\activity16v.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainToNotesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Palmer.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBPQT.DPV shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\dkjson.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18190_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js shell.bin.exe File opened for modification C:\Program Files\UndoGroup.xlsb.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-execution.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\COUPON.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00382_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-util-enumerations.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineIdle.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_left.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-gibbous.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Vienna.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14757_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Pine_Lumber.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuala_Lumpur.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\AFTRNOON.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL012.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURE.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18191_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_SlateBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04191_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18251_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02265_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01246_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREQ.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10263_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115836.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Colombo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART10.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01064_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santarem.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yellowknife shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR25F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14792_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMASTHD.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostTitle.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nassau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298653.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18237_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ro.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\settings.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14655_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21548_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN105.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightItalic.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME55.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\CloseImport.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMIMEE.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\es.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\vi.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_BR\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Maroon.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ADRESPEL.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14677_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305493.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL096.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\appletrailers.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR32F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\AUTHOR.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\8.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\ir.idl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVCMP.DIC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUPINST.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21527_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Couture.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSN.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03466_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_foggy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionOwner.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AIR98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382968.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\BG_ADOBE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME55.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115842.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Choibalsan.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\id\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEML.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_matte.wmv shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Notebook.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\GIGGLE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_hail.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Inuvik.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.security shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORMCTL.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxerror.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00076_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\InformationIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143753.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\localizedStrings.js shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\setup.chm shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00455_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN026.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEM.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\PLANNERS.ONE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-lib-uihandler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\Xusage.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Almaty.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\ALARM.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\classfile_constants.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\drag.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0298897.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Sync Framework\v1.0\Documentation\1033\License Agreements\SynchronizationEula.rtf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\PreviousMenuButtonIconSubpi.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBHOME.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-9 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294989.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cs.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Sofia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14656_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\DocumentShare\WSSFilesToolHomePageBackground.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.KR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Lindeman shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR42F.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gd\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImages16x16.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkTSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHSRN.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7jp.kic shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Edmonton.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21303_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00361_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\va.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Madrid shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nipigon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18193_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\mosaic_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Garden.htm shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Regina.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pontianak shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Casual.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DOTS.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\snmp.acl.template.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10308_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14982_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02285_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion14.gta.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14565_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00453_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansDemiBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386764.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18242_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18199_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_orange.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21335_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Composite.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04267_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Documentation.url.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.ITS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR47F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14710_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME11.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199423.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\localizedStrings.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mahe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00735_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tunis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia_Banderas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-execution.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME08.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Mauritius.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196400.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN107.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\full.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tahiti.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKDECS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14757_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jre7\README.TXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARDHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183172.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Panama.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVZIP.DIC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14513_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24Images.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Hardcover.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00403_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296288.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-9.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\GRAY.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME31.CSS shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-imageMask.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST5EDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Belgrade.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105246.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02039U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02743G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PNCTUATE.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.ibm.icu_52.1.0.v201404241930.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.H.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14830_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_left_rest.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DATETIME.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21305_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Concourse.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\winamp2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX.ECF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15019_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00882_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00780L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guatemala.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ERROR.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00917_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CreateSpaceImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eo.txt shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\plugin-container.exe.sig shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\7.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\PYCC.pf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_OliveGreen.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02166_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\REMINDER.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\avtransport.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Cocos.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\El_Salvador.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MSTHED98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spc.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-3.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Creston shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\RPLBRF35.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Shades of Blue.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB6.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\OFFISUPP.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME23.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\be.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup-impl.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+4 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL075.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TaskbarIconImagesMask256Colors.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsfin.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\CALENDAR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115867.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART13.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZUSR12.ACCDU.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105490.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\button-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fa.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\babypink.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14538_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lt.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\SUCTION.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21422_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240157.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECL.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Informix.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS4BOXES.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00806_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR18F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107182.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00308_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01196_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115863.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\resources.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\PROCDB.XLAM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212957.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskmenu.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\net.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-applemenu.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\720x480icongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guyana shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00231_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Beige.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBlankPage.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Samara.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\bin\Server\classes.jsa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10337_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\meta-index shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0252349.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14516_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multiview.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-api-caching.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\asciieng.lng.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251871.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\en.ttt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Troll.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+11.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-13.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18213_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_underline.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Grand_Turk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Irkutsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR1B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_alignright.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs-nio2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185776.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00012_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\PublicFunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fr\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Casual.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.DPV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\29.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296279.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL103.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18230_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00394_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Indianapolis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0215086.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEML.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadataresource.xsd shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng.txt shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_h.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\sa-jdi.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Maroon.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\button-highlight.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineIdle.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01357_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00166_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-api.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-oql.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188511.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1A.BDR shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png shell.bin.exe File opened for modification C:\Program Files\Internet Explorer\SIGNUP\install.ins.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticnotification.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00256_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev-down.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-last-quarter_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup-impl.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tallinn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00391_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\BLUEPRNT.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\VERSION.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN075.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195772.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00296_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04196_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\PublicFunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core-windows_visualvm.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_48.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\pagecurl.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\header-background.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\GMT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02758U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbynet.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Premium.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_hail.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARVERTBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALNDR98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\To_Do_List.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Whitehorse.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn_IN\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.XLS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Assets.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212957.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\removed-files.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-utilities.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\local_policy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197983.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gl.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Danmarkshavn.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerConstraints.exsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10337_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lv.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\42.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10289_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VeriSign_Class_3_Code_Signing_2001-4_CA.cer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_snow.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Dotted_Lines.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01247U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Civic.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01015_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105336.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_corner_top_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UCT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL020.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14516_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART15.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143748.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\FLASH.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00419_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152708.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\sound.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\FAXEXT.ECF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234657.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME23.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ashgabat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18231_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00395_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\RenameClose.tiff.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Athens shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGNL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14656_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01843_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR21F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.security.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB9.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN022.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02227_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14829_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00095_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGN.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00555_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02958_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.password.template.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dubai.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTEIRM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Lima.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessData.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN020.XML shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Fonts\TwemojiMozilla.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01772_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15273_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_right_disabled.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21294_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\2.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15155_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\osppobjs-spp-plugin-manifest-signed.xrm-ms shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Rio_Gallegos shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR42F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00018_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00248_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Taipei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\uninstall.log shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRMV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01838_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292270.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsMacroTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs-nio2.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid.gif shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Kentucky\Louisville.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\SKY.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-queries.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pohnpei shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART4.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299763.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285360.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02066_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10253_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21331_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198020.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21377_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382965.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00127_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME35.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18218_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Jamaica.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Merida.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN110.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS2SWOOS.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107742.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099180.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XMLSDK5.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18187_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18252_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sl.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePageBlank.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Metro.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTEIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Andorra.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\plugins.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\AMERITECH.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21364_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SLERROR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\specialmainsubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Araguaina.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\winamp2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\push_item.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sq.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.HK.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-dialogs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR27F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwruklm.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsColorChart.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Sts.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-visual.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Music.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Glace_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR11F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR19F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18229_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00057_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Background_QuickLaunch.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Cocos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TITLE.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_HK.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPAPERS.INI.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Krasnoyarsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\stopNetworkServer.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\time-span-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00602_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRMV.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Nome shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN096.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INDOMAIN.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Equity.eftx shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\VisualElements\VisualElements_150.png shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color32.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-oql.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX2.ECF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.TW.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsjpn.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Helsinki.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR4F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Saipan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240189.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\month.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_rainy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+10 shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiling_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115866.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199755.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15058_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\grayStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14654_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Response.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACC.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCH98SP.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lord_Howe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Monterrey.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00013_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\11.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR19F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21316_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235241.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.DE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10219_.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw120.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+1.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.ID.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00172_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14752_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297757.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+8.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_MediumMAsk.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tr.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-lib-uihandler.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Invite or Link.one.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21314_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18182_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SegoeChess.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Discussion.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18207_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\CHEVRON.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18242_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\StaticText.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESP98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryNewsletter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02263_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME-JAVAFX.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18205_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javafx.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR33F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\History.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\FUNCRES.XLAM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00346_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105360.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Gaza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195428.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTEAR.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21294_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\35.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-cli.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nl.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14595_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL002.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Funafuti.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_close_down_BIDI.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\AST4 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21313_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195384.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN020.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Notes_content-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Apia shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0214098.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18200_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Amd64\jvm.cfg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yakutsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\bdcmetadata.xsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLowMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153273.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\sandbox.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.metadataprovider.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME25.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00351_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Country.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Foundry.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Recife shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-windows_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-modules.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTEL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR17F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessData.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Samarkand.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutofSyncIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15275_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102984.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BOMB.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplate.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_MoveNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\blacklist.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00008_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Luxembourg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR26F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL020.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-keymap.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Windhoek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santarem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00224_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1036\MSO.ACL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00389_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt.txt shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyMainBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Guatemala.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297707.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wake shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Manuscript.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10253_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182888.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Garden.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Asuncion shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Discussion\DiscussionToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01742_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterNotificationDescriptors.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01562U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-applemenu.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mspub.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10219_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18222_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03470_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Khartoum.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00208_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART6.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090070.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.POC shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Lisbon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\ACTIVITL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_TexturedBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251301.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Reunion.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-views.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Essential.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\MLA.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-full_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME53.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0216858.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Faroe shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\SNEEZE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipskor.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18207_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPRNG_01.MID shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESP.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\br.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\dropins\README.TXT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTEL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FORM98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01300_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-core_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01039_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\Reader\filename.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL092.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00197_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nn.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-windows.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePage.html shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\yo.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01472_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0158007.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_h.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port_of_Spain.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\THANKS.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME09.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.DPV shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\skin.catalog.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Malta.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293236.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05710_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\js\settings.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\ARROW.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\subscription.xsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00118_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBREF.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boise shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL092.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsFormTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187849.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_09.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00445_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.JP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.service.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01157_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21309_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237228.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Oriel.xml shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pl.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\8.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Juan shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\LightSpirit.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Recife.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormToolImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0336075.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-templates.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\InfoPathOMFormServicesV12\Microsoft.Office.InfoPath.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SNIPE.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00100_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB11.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvmstat.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Contacts.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199661.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1B.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\grid_(cm).wmf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198102.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0240695.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107730.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0211981.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\css\settings.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6CDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR22F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME19.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15168_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187817.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH00601G.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\removed-files.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baku.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESN.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215710.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_bottom_right.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02091_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\BlockHide.rle.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-6.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JAVA_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutDomain.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239965.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-ui.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR28F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18233_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0279644.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Scenes_LOOP_BG_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01631_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107300.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Damascus.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL011.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_VelvetRose.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_center.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tirane.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099173.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21310_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR10F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\4.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_CopyDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-threaddump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239191.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Civic.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\es.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote-PipelineConfig.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL111.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Premium.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07804_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Vincennes.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR42F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN010.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18235_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101980.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFNOT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME05.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\koreus.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME10.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02446_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWSHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kiev.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CT_ROOTS.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02742U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02055_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sa.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zurich shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.PL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01470_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285822.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-execution_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199283.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN090.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04326_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPML.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPAPERS.INI.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02116_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199727.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Melbourne shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CST6CDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18236_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Msgbox.accdt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152702.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188667.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02441_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OCT.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00443_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Right.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099205.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkClientCP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-uisupport_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Lima.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Teal.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099170.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NVBELL.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200279.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Events.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152716.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\TEXTAREA.JPG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ext.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Macau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_single_bkg.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-windows.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Karachi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-charts.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_sv.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090783.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExpenseReport.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Document.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BROCHURE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Origin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Cape_Verde.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-text.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ClassicPhotoAlbum.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152884.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00298_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Urumqi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00426_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_divider.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\flower_trans_RGB_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Nauru.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SUBMIT.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXPTOOWS.XLA.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234266.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxerror.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02793_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\BG_ADOBE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Adjacency.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_orange.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\AddToViewArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PIXEL.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00694_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14582_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\css\settings.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01253_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15061_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-compat.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\jmxremote.access shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engidx.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01395_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00195_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QUIKPUBS.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ru.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pontianak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21295_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rainy_River shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSQRY32.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Comments.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10256_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-attach.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR20F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Campo_Grande.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00737_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105244.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382967.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102762.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tijuana shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME44.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01015_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-output2.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\XML2WORD.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOVEL.WAV shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.security.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105286.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0221903.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CNFRES.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10300_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-jvmstat.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD20013_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01842_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293236.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02106_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME22.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18215_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234001.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ar.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285444.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00330_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\platform.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18210_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14868_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHDHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SAVE.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240389.profile.gz shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228823.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21435_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_divider_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\local_policy.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GreenTea.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZMAIN.ACCDE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-multitabs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHKEY.DAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285926.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jsse.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0296277.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\New_York.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02009_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7FR.dub.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boise.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIPMASK.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149407.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Urumqi shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-modules-appui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEB11.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\CALENDAR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ViewHeaderPreview.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENES\MSB1ENES.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01173_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSSP7EN.dub shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02054_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR22F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01157_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\flight_recorder.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00668_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB4.BDR shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ADVCMP.DIC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Module.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\content-types.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Metro.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00693_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00732_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143749.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Khandyga shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR14F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00853_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CONTACTINFOBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02097_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME43.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCOUPON.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0229385.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ViewHeaderPreview.jpg shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sk.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\osknumpad\osknumpadbase.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\San_Luis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Salta shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Chagos shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multiview.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198021.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SLERROR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\RenameMount.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Groove.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDCNCL.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386267.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Title_Page_Ref.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05665_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00523_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\RELAY.CER shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_snow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Petersburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Lagos shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.HOL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03011U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03379I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151063.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-progress-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.bfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONGuide.onepkg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00145_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099171.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boa_Vista shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tokyo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\16.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00527_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.SG.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-coredump.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Madeira shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OriginFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01253_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSCOL11.INF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Pretty_Peacock.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jmx_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NL.ROGERS.COM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.metadata.repository.prefs shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18235_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01172_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Magadan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00965_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\graph_over.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-core-kit.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00391_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\COUPLER.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285792.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-nodes_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106816.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEML.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_pt_BR.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Payment Type.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Flow.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107482.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen.css.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\02_frenchtv.luac shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\keypad.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Efate.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRMV.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIcons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\EXPLODE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART7.BDR shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkHandle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-modules-options-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jayapura.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.DPV shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.ID.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ka.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME21.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157831.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00126_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107744.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Northwind.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OUTLOOK.EXE.MANIFEST shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN089.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tt.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Solstice.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00289_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\CIEXYZ.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21344_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Anadyr shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143746.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03380I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ja.txt shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ky.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\plugin.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Top.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\21.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLY98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_OliveGreen.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00204_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188669.WMF shell.bin.exe File opened for modification C:\Program Files\PingOpen.DVR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19986_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01236U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+2 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME16.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Waveform.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dhaka.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105526.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03795_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB2A.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01590_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\item_hover_docked.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Panama.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281640.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\browse_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-api.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Response.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\WARN.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00820_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14530_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18181_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterBold.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.DPV shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\NEWS.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\wa\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15035_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsViewAttachmentIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04235_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15172_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\send-email-16.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABELHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileOffMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00494_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javafx.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\de\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Slipstream.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18217_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.JP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Fonts\TwemojiMozilla.ttf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-services.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00671_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SegoeChess.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\SectionHeading.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Swift_Current.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zurich.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SBCGLOBAL.NET.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Bermuda.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\BOLDSTRI.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SpringGreen\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-US\clock.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\meta-index.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Iqaluit.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00116_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21518_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\ECHO.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Warsaw.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrvc.dat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239063.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01151_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN097.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24Images.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN081.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-undocked-4.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME28.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21421_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sq.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jakarta shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\STSLIST.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\EmbeddedView.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pa-in.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00074_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\pt.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsdeu.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21535_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHDHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Earthy.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241773.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Metlakatla.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME01.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME11.CSS shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384862.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Gambier shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_AutoMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-netbeans-core.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Algiers.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR26F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00170_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01603_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\js\main.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+12 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19988_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00943_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgePackages.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-modules-profiler_visualvm.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\descript.ion.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART13.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ALERT.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21390_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw120.jpg shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\diner_m.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-lib-uihandler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02810J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_HK.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Enderbury.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LINEACT.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\MMHMM.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\HST shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Premium.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Median.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01243_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_heb.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chihuahua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieNewsletter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286068.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01065_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\README.TXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14528_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\uninstall.log.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHSRN.DAT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryMergeLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18221_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL104.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Noronha.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\St_Johns.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Easter.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0217698.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239997.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-io-ui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\VIEW.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF shell.bin.exe File opened for modification C:\Program Files\CloseImport.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\1.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Regina.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Major Indicies.iqy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL011.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-print.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBLR6.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZTOOL.ACCDE shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\BREEZE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.bfc.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02443_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\uz.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Merida.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+11.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LINE.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01084_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02757U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02404_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactLow.jpg shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\buttonUp_On.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Stockholm shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Montreal.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01066_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00105_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBCALSO.POC shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212953.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_High.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\South_Georgia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Manila.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Easter.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\PicturesToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02270_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02749U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5B.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14583_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01561_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CG1606.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGAD.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPQUOT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Srednekolymsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15134_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382962.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00296_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Solstice.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\RIPPLE.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-execution.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\CST6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\WidescreenPresentation.potx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00444_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01160_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Whitehorse.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02045_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02075_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107718.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-api.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00670_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kab.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTES.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYVERTBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01166_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\TexturedBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\1px.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Vostok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hy.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kuching shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Manuscript.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ho_Chi_Minh.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+11.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18221_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200467.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00423_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14985_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-2 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\PST8PDT shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Halifax.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Berlin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15168_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00114_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apex.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Teal.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD06200_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrvc.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297229.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15034_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00092_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14655_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01585_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00011_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099151.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IT.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18194_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14515_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORY.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-compat.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Menominee.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3EN.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107480.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18224_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153305.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196164.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\README.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-autoupdate-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Tegucigalpa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\SalesReport.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\My\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00915_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00006_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00486_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15277_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\crashreporter.ini shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Cape_Verde shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_HighMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-charts.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\PUSH.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21296_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sampler.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Oslo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ERROR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-explorer.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0217698.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00633_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialReport.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_TexturedBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\CHEVRON.ICO shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Vladivostok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195320.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN044.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Metro.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-annotations-common.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00814_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18191_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\COMPASS.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\lookup.dat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+9.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Groove Starter Template.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Kwajalein.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPreviewTemplateRTL.html.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293236.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Document Parts\1033\14\Built-In Building Blocks.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00276_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222021.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Amsterdam.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ku-ckb.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Omsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-10.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_resources14.xss.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nassau.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00923_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Paper.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PROGRAM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Fancy.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0160590.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185786.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STRBRST.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\logging.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02559_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)greenStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EET.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME02.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineIdle.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-changjei.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHighMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281638.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESPS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187847.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00532_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01080_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200151.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\button_MCELogo_mouseout.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Paris.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02269_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086428.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105912.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mr.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR13F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18234_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHigh.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\arrow.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18251_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107138.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_top.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Monterrey.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+8 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107748.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196364.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215070.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02451_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149627.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAIL11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02752U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\COUGH.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-windows.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKREQL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_07.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Moncton shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsColorChart.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285782.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00306_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Niue.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cuiaba shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+5.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Belgrade shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-modules.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00458_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01734_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00267_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299125.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386485.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Samarkand.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OrielFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\SketchIconImages.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14581_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01178_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03731_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Init.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\SR\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-queries.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00910_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Azores.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01193_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105294.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\SONORA.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105250.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jvm.lib.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00419_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\huemainsubpicture2.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01171_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01848_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\init.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR27F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00388_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18219_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00479_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690Nmerical.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Teal.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\cli.luac shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Manaus.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR34F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cancun.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kaa.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_hail.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Title_Trans_Notes_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00010_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\SUCTION.WAV shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\9.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialResume.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrortogroove.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Lima.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Adobe.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15169_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MSPUB.TLB shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\resources.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21398_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115844.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\UTC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-tabcontrol.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BDRTKFUL.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\Reader\filename.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152436.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SWEST_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsMacroTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\LISTBOX.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Palau shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-loaders.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR36F.GIF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fa.txt shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\dependentlibs.list shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\1047x576black.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Recife shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN010.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21370_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-backglow.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-profiler.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14801_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18239_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR14F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00466_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198377.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\play-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Buenos_Aires.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03513_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293240.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14997_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-ui.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Saipan shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR18F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Earthy.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyMergeLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-execution.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.DOC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09662_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00369_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-crescent.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Kerguelen.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200383.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384885.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Creston.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\FUNCRES.XLAM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Response.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.BR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03041I.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\La_Paz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105282.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\delete_up.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Troll.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Mendoza.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR38F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297727.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageScript.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Monrovia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\TexturedBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01130_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Gaza.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OOFS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293844.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_mid_disable.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Blanc-Sablon shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00640_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153265.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21328_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213449.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\LightSpirit.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-modules-appui.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00200_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\TOOT.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL044.XML.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_INTRO_BG.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME17.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.XML shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kiev.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolImagesMask16x16.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00608_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301480.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01191_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\default_thumb.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-javahelp.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18236_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01172_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BREEZE.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00222_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\dotslightoverlay.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kaliningrad.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrenclm.dat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18241_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21336_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Form_StatusImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+1.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AWARDHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195812.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL081.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICTPH.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00531L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21398_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02161_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\PROCDB.XLAM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Equity.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\UTILITY.ACCDA shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipssrb.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-nodes.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090386.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02214_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tongatapu.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-util.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR27F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART2.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00241_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00390_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\01_googleimage.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR47F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\invalid32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Technic.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\images\16-on-black.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-14 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEW.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02201_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.PL.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Accra shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-6 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCHUR11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME52.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00525_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tehran.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\PYCC.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Eirunepe shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02567J.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00542_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATALOG.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxalert.ico shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\calendars.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21320_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\view.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02077_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239611.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287408.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jmx.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR23F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090777.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_hyperlink.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Scoresbysund.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00444_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\LoginTool24x24ImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\sRGB.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\vintage.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-outline.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+6 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsVersion1Warning.htm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293240.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfxrt.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099172.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14866_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18255_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233312.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\7-zip.chm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-impl.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\sound.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02155_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\US_export_policy.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18193_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285926.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEMS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14539_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\OliveGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-applemenu.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\messageboxinfo.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01491_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nipigon.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10298_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Aspect.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00601_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Lime.css shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292248.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-api-caching.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187825.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\zipfs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300912.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Norfolk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREQ.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14579_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18250_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Nicosia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00057_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00186_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GREETING.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME08.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02437_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multitabs_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\updater.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spc.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01659_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL054.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_italic.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Medium.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEB11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\LICENSE.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tunis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01657_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241019.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00685_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00084_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02439_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00141_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_decreaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanMergeFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-filesystems.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+9 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107288.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_justify.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212661.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\PUSH.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dummy.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18184_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18228_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\23.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\startNetworkServer shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME36.CSS shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gu.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099146.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\performance.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_INTRO_BG_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-print.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152622.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-uihandler.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00414_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00050_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02466U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multitabs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-common.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174635.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\Microsoft.Office.InfoPath.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235319.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.BusinessData.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tijuana shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Training.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRMV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santa_Isabel.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\alert_obj.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\attention.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_schemas14.xss.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\BUZZ.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00775_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107342.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR23F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME49.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02750G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_choosecolor.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18200_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15072_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324704.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\PersonalMonthlyBudget.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\CalendarToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\DRUMROLL.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\javaws.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\invalid32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosefont.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qatar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.properties.src.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Grid.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01176_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hovd.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kuching.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-compat_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-modules-profiler_visualvm.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Oriel.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115866.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICCAP98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Rothera shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Shanghai shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Pyongyang.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151055.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152894.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME18.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\HICCUP.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01563_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONFLICT.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241041.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tarawa.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152570.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\sa-jdi.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chuuk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Northwind.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIP.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0102002.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH1.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CST6CDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\Setup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00559_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\IPIRMV.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105272.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTE.CFG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-3.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-heapdump.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh89.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01572_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.FR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\search_background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-loaders_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Country.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\Whistling.wav.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02413_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewSelectionChanged.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19828_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Khartoum shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090386.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0158007.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Stationery\BUSINESS.ONE.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21330_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSSPC.ECF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGTOC.DPV shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cancun shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21365_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\24.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SIGN.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN092.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\blacklist shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-remote.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\THIRDPARTYLICENSEREADME-JAVAFX.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02208U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237759.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME41.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Office Word 2003 Look.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\1033\MCABOUT.HTM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PRRTINST.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-javahelp.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21504_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PAPERS.INI.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\CASHREG.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB5A.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignright.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\VOLTAGE.WAV shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\si.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09194_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099174.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0230558.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\ui.js.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\photograph.png shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\updater.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\css\slideShow.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14656_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332268.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\Passport.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-explorer.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO11.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Earthy.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Slate\SLATE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00116_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_schemas14.xss shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierWindowMaskRTL.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-highlight.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185790.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-8 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist_jstree.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lg\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Andorra.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FLAP.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0304933.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nb.txt shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Copenhagen shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01295_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_h.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belize.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\install.log shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285820.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageSmall.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157191.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Workflow.VisualBasic.Targets shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\images\base-docked.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Auckland shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15301_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152590.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152876.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineBusy.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\IMAGE.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBUI6.CHM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBAR11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chicago shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_05.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART5.BDR shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\mk\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_cloudy.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZCARD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0315447.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00531_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\RedistList\FrameworkList.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsrom.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\day-of-week-16.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\prev_rest.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-explorer_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Maputo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Priority.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\jaccess.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Chita.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14845_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR8B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105298.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Ndjamena.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qatar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\folder.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eu.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01182_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL044.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241043.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00452_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00437_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\RSSFeeds.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Equity.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Elemental.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BDRTKFUL.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152898.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105240.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\MANUAL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\TURABIAN.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\ParentMenuButtonIconSubpict.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\date-span-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\management\management.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02740U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Novokuznetsk shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\jawt.lib.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PAWPRINT.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Sign.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01478U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\ea-sym.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ACCSBAR.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-sa.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\it.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL111.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jvmticmlr.h.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14867_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\1100.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183328.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\AddToViewArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\SpecialNavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-util-enumerations.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RECS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTES.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts2.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Winamac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\FUNCRES.XLAM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Person.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10301_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Premium.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292278.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15060_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02389_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\SEAMARBL.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveMergeLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-9.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00005_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jni.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yellowknife.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR24F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME33.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMV12\Microsoft.Office.InfoPath.xml.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fur.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185800.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OEMPRINT.CAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTINTERNET.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3A.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\co.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\alert_obj.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0287005.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.JS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107358.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\btn-back-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-nodes.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CT_ROOTS.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216874.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240175.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\io.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Thatch.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLBAR.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\TOOLICON.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.INF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\7.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_blue_sun.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bogota.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287018.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\JNGLE_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\as90.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15018_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21299_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hr\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01239_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00914_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Tripoli.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_SlateBlue.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_INIT.XSN.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX2.ECF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL089.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\am\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21327_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0186348.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kaa.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-spi-actions_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Tirane shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.KR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Services\verisign.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\RELEASE-NOTES.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsHomePageStyle.css shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105412.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18230_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18247_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Notes_loop.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REMOTE.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDRESN.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\GRAPH.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\ROGERS.COM.XML shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\THANKS.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Edmonton.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\Icons\new-trigger-wiz.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Chagos shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Cordoba.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\RMNSQUE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Menominee shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\0.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205582.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\Beulah.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR25F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-heapdump.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDREQS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\OliveGreen.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\NextMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01123_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\System\ado\adovbs.inc shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsBrowserUpgrade.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-overlay.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Johannesburg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfxrt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Trek.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\COMBOBOX.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00808_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierBackgroundRTL.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01044_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04195_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285750.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\slideShow.html shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainToScenesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN011.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hebron.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7es.kic shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lt.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304405.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00462_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waxing-gibbous.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSCONFIG.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Volgograd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-io.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0233512.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18222_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_pressed.gif.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\yo.txt.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.FNT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Trek.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387591.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN097.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\heart_glass_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_fr.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Palmer.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Review.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293234.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153398.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ko\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107724.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105410.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03464_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\ViewHeaderPreview.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\simplexml.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\invalid32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\attention.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086478.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-api-caching.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\FiveRules.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Boise shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\eclipse.inf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18216_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00194_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15155_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrortogroove.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01296_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\UndoConvertTo.xltx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\bn.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Newsprint.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152556.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\eclipse.inf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\North_Dakota\New_Salem.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.PPT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sv\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15035_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18249_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS9CRNRH.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIcons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_xml.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-selector-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00443_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\CAN.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293234.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00183_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Urban.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Bahia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART2.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\CircleIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01058_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\Xusage.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02071U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-impl.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14655_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01743_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Regina shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239935.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Johannesburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGHEADING.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL98.POC shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\main.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyReport.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21448_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00233_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02296_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10254_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06450_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01179J.JPG shell.bin.exe File opened for modification C:\Program Files\TestResolve.3gp2.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-crescent.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsptg.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Darwin.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05930_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01751_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Tell_City shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Puerto_Rico.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00779_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0228959.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Status Report.fdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00641_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\main.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BAN98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORY.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\eu.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105496.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00726_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.TH.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153302.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SMSL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR49B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21327_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\QuizShow.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Pushpin.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195342.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Urban.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115867.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.FR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBLINK.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\org-netbeans-core_visualvm.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185778.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10302_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19827_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00218_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-explorer.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239079.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\WORDIRMV.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-nodes.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HM00172_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01745_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\controllers.js shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Honolulu shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143754.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBHD.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Angles.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Hardcover.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hu\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yakutat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_LightSpirit.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115865.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\utilityfunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santiago shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME04.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Majuro shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400005.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\HORN.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Rarotonga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRMV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.actionProvider.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR48F.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182946.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.properties.src.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Puerto_Rico shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-9.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\calendar_double_bkg.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerConstraints.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00095_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\subscription.xsd.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Toronto.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\TimeCard.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_GreenTea.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_EN.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21533_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BREAK.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\css\RSSFeeds.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaSansRegular.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Amd64\jvm.cfg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\PST8PDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01161_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\en-US\js\service.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+6.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Verve.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-lib-profiler-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_ES.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\PST8PDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\README.TXT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\SUCTION.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18257_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107150.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sampler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04384_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\MessageBoxIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-8 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novosibirsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15132_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143758.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCHKBRD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-loaders.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-settings.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Push\1047_576black.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18212_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00136_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00257_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrow.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01143_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Maroon.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00543_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01179_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DVDHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GreenTea.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javafx.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Tunis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21423_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00117_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActions.exsd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00482_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\MedianFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00957_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\CST6CDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FRAR\MSB1FRAR.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\attention.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Maldives.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02361_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14755_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB4.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\uninstall.log.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7ge.kic shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\GlobeButtonImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02298_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-multiview_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.IE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\he.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18216_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-core.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\IRIS.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172067.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Paris.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pago_Pago.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212299.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\MMHMM.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15275_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Black Tie.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\LAYERS.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Midway.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Stanley.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01368_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\TestResolve.3gp2.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PSRCHKEY.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\STORYBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nl.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\blacklist.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14832_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewFrame.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESP98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171685.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Couture.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187859.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\Management.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\TOOLICON.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Havana shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_box_bottom.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\cacerts.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ust-Nera shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Oslo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\NOTICE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-tools.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\CURRENCY.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04355_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Earthy.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Thatch.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309920.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Projects.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\speaker-32.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Scene_loop_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN048.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00454_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01219_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarToolIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0251871.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN103.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02748G.GIF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-waning-gibbous_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_TW.properties shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Almaty.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\RTF_BOLD.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_performance_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBOX.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR16F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_FileHighMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386120.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\AXIS.ELM shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PAPYRUS.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_10.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04385_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Danmarkshavn.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Juneau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guam.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01291_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Americana\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0335112.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00705_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\blackbars80.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CHECKER.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ApothecaryLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-coredump.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR24F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7en.kic shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14692_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00438_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-attach_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR00.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RSSITEML.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR24F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237225.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00246_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\eqnedt32.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18192_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00938_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02088_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL104.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\UndoConvertTo.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309902.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Main_Background_Loading.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\South_Georgia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CRANE.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02470U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Metro.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172035.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107426.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_right_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanPhotoAlbum.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME54.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityResume.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Black Tie.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipscat.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-uihandler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-output2.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TOC98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090386.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH2.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chihuahua shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Beulah shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188519.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB7.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN086.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01046J.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Perth.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0172193.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01749_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107152.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15061_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\classlist shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_Groove.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281632.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL026.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bahia.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-ui_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fakaofo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\mobile.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00416_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105398.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN058.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Biscay\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18233_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\shuffle_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02950_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\custom.lua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107722.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02957_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\psfontj2d.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Sitka.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_alignleft.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\VERSION.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105520.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SHOW_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\symbols\ja-jp-sym.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Fonts\TwemojiMozilla.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL00286_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00190_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR13F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EssentialMergeLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00192_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212601.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBSBR.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\sports_disc_mask.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javaws.policy shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyReport.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186364.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_bullets.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Austin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\utilityfunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\GrayCheck.css shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105230.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105328.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090070.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02074_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\README.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKUPD.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME37.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.ES.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\VIBE.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_SlateBlue.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Title_Page_Ref_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Bishkek shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14828_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01152_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutDomain.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsDoNotTrust.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105502.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107266.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\203x8subpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Bucharest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21325_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105386.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ProjectStatusReport.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\NOTES.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENVELOPE.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Hovd shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00407_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Lindeman.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunmscapi.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Bougainville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18247_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\DigitalInk.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SUMER_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14752_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01634_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECRECS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107490.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152610.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePageBlank.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\INVITE.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00656_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BREEZE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Rome shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-io-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Customer Support.fdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0295241.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00440_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WSSFilesToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\SendRepair.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Init.xsn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18215_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Adelaide.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152626.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158477.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyNotesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-loaders.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01294_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_view.html shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\sandbox.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\updater.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR45F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00336_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200163.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\2 Top.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18244_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\RenameMount.ini shell.bin.exe File opened for modification C:\Program Files\BlockHide.rle.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-attach.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Gibraltar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153089.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861261279.profile.gz shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-attach.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.SE.XML shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hy.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_gray_few-showers.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsImageTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15155_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00586_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\validation.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212685.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241077.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\meta-index.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Chisinau shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18208_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\dumpmeta.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14984_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-windows.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293828.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01858_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-charts.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nome shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\Attachments.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00918_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214934.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL022.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-spi-actions.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURS.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Broken_Hill.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01240_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DataListIconImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART11.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDCNCLS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239973.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00212_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Caracas shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Athens.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.H.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182902.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Resolute shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR2B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233018.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188513.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_increaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Prague.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\DiscussionToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-13 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_right.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18243_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME44.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00173_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-phonetic.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macTSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OIS_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01421_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01563_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18197_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\DELETE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\10.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieMergeLetter.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01636_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\join.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MUSIC_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152430.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\pause_rest.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107658.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00441_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB1A.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Los_Angeles.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Classic.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00760L.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCRD98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00723_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15022_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Grid.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Araguaina shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Response.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME33.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00130_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\ISO690.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183168.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-windows.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME48.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01628_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16Images.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Sao_Paulo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-charts_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Clarity.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150861.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00223_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00390_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0185604.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Riga.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Midway.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\BOMB.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00411_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Guadalcanal.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Graph.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR27F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR29F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Distinctive.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090779.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationUp_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansDemiBold.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_OliveGreen.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\SPRING.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square_dot.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-api_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_justify.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00911_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\sa-jdi.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Executive.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GB.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsFormTemplateRTL.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199805.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-annotations-common.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-queries.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107158.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Eirunepe.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Small_News.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Manaus.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santiago.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-attach.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01629_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Urban.thmx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Efate shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\LAUNCH.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cuiaba.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPM.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\120DPI\(120DPI)notConnectedStateIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Godthab.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\charsets.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14513_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\background.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Elemental.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02085_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099204.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_decreaseindent.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Port-au-Prince.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15168_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABMASK.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107708.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200183.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Monaco.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\DELETE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02417_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Minsk.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00242_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00459_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Document Parts\1033\14\Built-In Building Blocks.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\BUTTON.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBREF.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Off.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN02122_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-outline.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00270_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Waveform.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\SPACER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\grid_(inch).wmf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Brisbane shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTaskIconMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00792_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\rockbox_fm_presets.luac shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsen.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Fax\OrielFax.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART6.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2String.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Opulent.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Porto_Velho.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-keymap.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02503U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SPLASH.WAV shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198113.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02398_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\dnsns.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_K_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Technic.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21334_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01748_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\favicon.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21326_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107258.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01740_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerConstraints.exsd.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOC.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00985_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Essential.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OCEAN_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00783_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN044.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ko.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Mawson.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\RenameClose.tiff shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\SIST02.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL075.XML.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\af\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107308.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02115_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightOrange\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107148.WMF shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceSimplifiedQuanPin.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Broken_Hill.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\jhall-2.0_05.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Default.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Pushpin.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Orange Circles.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guyana shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-nodes.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152432.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292152.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\LAUNCH.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Efate.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107446.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-windows.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\GMT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CATWIZ.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART1.BDR shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainToNotesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR16F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0299611.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196142.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN082.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Composite.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Jerusalem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736G.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\logo.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_box_divider_right.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232803.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\New_Skins.url.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\crashreporter.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-io_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297707.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\STUBBY1.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_underline.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_spellcheck.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostName.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\zipfs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boa_Vista.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02009_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Eurosti.TTF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kathmandu.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21339_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00343_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDEBARBB.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_de_DE.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yellowknife shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Currie.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Country.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\LICENSE.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\zipfs.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\meta-index.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Maroon.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\MST shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196354.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08868_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\dnsns.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18202_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02431_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions_Doc.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.IN.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\gu.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Vancouver.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\EST shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18207_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18226_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0168644.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Canary.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285796.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN109.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Seyes.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santiago.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Paper.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santo_Domingo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR11F.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14579_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382960.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21318_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115856.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\release shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR25F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Elemental.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsHomePage.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186346.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WCOMP98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-waxing-crescent_partly-cloudy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-fallback.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\BUTTON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Month_Calendar.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.DOC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\powerpnt.exe.manifest shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\SplashImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\default.jfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18238_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318810.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105306.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Kiev.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00116_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0157763.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAILMOD.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0212751.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\VIEW.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-10 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCD98SP.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwruksh.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Krasnoyarsk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18209_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\reveal_hov.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-favorites_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\EST5EDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15022_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DissolveNoise.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-profiler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR44B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15020_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02263_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\London shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Default.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTOPENWORLD.COM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285444.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewFrame.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-progress-ui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART2.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14692_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215709.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineBusy.ico shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fur\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\41.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BillingStatement.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePageBlank.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\Xusage.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Noronha shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\GRAPH.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\WSS_DocLib.ico shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\lv.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02384_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\simplexml.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port_of_Spain.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveNoDrop32x32.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\XMLSDK5.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\accessibility.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MENU98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01186_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SlateBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR50B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\CAN.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+3 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Galapagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107712.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03241_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0386270.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\720x480blacksquare.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fakaofo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONENOTE_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0252669.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01255G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00965_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Bissau shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIDBAR98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Karachi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OUTGOING.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-13 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ContemporaryPhotoAlbum.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RSPMECH.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00726_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-services.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Grayscale.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086426.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOT.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\THEMES.INF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ba.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hi.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\SoftBlue.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105504.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\excel.exe.manifest.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-dialogs.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0197979.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jakarta shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00546_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Perspective.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT98SP.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\RADIO.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14793_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\Analysis\PROCDB.XLAM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01954_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Couture.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153047.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Peacock.htm shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring-impl.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Vostok.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14677_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304861.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00261_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\FLASH.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21376_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SceneButtonInset_Alpha1.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Minsk shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsImageTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18203_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18238_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Flow.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_snow.png shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\blank.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Gambier.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TEAROFF.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALSO98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME07.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Austin.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupicons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR13F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-templates.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Bishkek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Name.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01245_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00200_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00272_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02134_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Almaty.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0196358.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Bermuda.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-editor-mimelookup-impl.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186360.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayenne.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02169_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01173_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00352_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OrielResume.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN107.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151067.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187837.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199279.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WING2.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SECURS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18241_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00454_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02264_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01299_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\US_export_policy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACCESS12.ACC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR22F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0188679.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287417.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGATNGET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099169.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Aqtobe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Sakhalin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARD11.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18247_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107146.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Juneau.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Pitcairn.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00683_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_justify.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_FormsHomePage.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Traditional.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099184.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\THIRDPARTYLICENSEREADME.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00015_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0387578.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152558.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152600.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-host-remote_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Casual.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00177_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Ulaanbaatar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME08.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGMASTHD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18254_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Thatch.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02187_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\bandwidth.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santarem.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02141_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02053J.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\currency.data.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Colombo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10298_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\FiveRules.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MML2OMML.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared16x16ImagesMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01084_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00530_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151061.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\grvschema.xsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-core-kit.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Budapest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10358_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149887.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199473.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00018_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME27.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01162_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0295069.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\PUSH.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-execution.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME26.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18242_.WMF shell.bin.exe File opened for modification C:\Program Files\SendRepair.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-spi-quicksearch.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-utilities.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_COL.HXC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR5B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsBrowserUpgrade.html.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\1047x576_91n92.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Nicosia shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18228_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD05119_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-back-over-select.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232395.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SBCGLOBAL.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\is.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-applemenu.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR2B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03451_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PROFILE.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00019_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01660_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00046_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ocrhc.dat shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ARFR\MSB1ARFR.ITS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19695_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Issue Tracking.gta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR46F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\net.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GRAPH_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\LoanAmortization.xltx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Lime.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205582.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02617_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\BUZZ.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01163_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\css\picturePuzzle.css shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02444_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00834_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\COPYRIGHT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Azores shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nl.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-application-views.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02790_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0318804.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts2.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Couture.eftx shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\CircleSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_LinkDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+10.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LTHD98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Lagos shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ko.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WORDREP.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01744_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Budapest.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OLKIRM.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Lisbon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-outline_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-compat.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14981_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099175.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281630.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287024.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR46F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212219.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15277_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Thunder_Bay.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18205_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGACCBAR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ca\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-core-kit_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00919_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0291984.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0156537.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00194_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15035_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\26.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-settings_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105390.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Berlin shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02094_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153518.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\MP00021_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\LEVEL.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SBCGLOBAL.NET.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jsse.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\psfont.properties.ja.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Casey.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLN.PPT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090087.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WITHCOMP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15272_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\javaws.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-actions.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Foundry.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099178.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR49F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332364.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR3F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\DumontDUrville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\rtf_spellcheck.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107344.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsdan.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\meta-index.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Magadan shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107468.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02426_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setEmbeddedCP.bat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dushanbe.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-output2_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\RADAR.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Madrid shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baghdad shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21375_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Casual.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\WATERMAR.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NEWS.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02886_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-nodes.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02293_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01181_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00563_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00956_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217872.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0240291.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Hobart shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Sts2.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00564_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_ja.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupicons.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PPTIRM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\GRIPMASK.BMP shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spc.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\jhall-2.0_05.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\FAXEXT.ECF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AWARDHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198447.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105378.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107024.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-sampler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-4.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GreenTea.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301432.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00373_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_GreenTea.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199483.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiItalic.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0158071.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00382_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\APA.XSL shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01839_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21322_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099182.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\af.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00898_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00688_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-execution.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Earthy.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.ELM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yakutsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cayenne shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+7 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21480_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02356_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\hprof-16.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-text.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21306_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00372_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00524_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART6.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18227_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Library\SOLVER\SOLVER.XLAM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN102.XML shell.bin.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.Targets shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayman.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423861240811.profile.gz.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_pressed.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-compat.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01875_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\da.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\ext\zipfs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Ushuaia shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5EDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME36.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_foggy.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-host-remote.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engidx.dat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsHomePageStyle.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-threaddump.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cancun.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Choibalsan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\settings.ini shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Easter.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Metlakatla shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBBTN.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fr.txt shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Memories_buttonClear.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\LimitUnlock.wma.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\MST7 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.INI.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Rangoon.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\invalid32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\SessionMember.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01332U.BMP shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSOUC_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286034.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LABEL98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-annotations-common_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Belem shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATH_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21320_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115863.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\LAUNCH.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_corner_top_left.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-compat.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-io-ui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08758_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Teal.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\Setup.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Distinctive.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mexico_City.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Currie.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pitcairn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutDomain.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BRCH98SP.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\SUBMIT.JS shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Fortaleza.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Fiji shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\.eclipseproduct.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-7 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Yakutat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ulaanbaatar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153093.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mahe shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\HST10 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewAttachmentIcons.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Catamarca.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-utilities.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\INFOPATHEDITOR_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ACTIP10.HLP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02373_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Martinique.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-awt_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-sa_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Discussion14.gta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00828_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00941_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableUpArrow.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00350_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormToolImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginReport.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02282_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18224_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21318_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\14.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Vladivostok.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\QUERIES\MSN MoneyCentral Investor Stock Quotes.iqy.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21344_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21344_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\oskpred\oskpredbase.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR25F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR5B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL105.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-tools.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZDAT12.ACCDU.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149481.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02423_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Wallis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01474_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0196374.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0222019.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301050.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-1 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\PST8PDT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Midway shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Premium.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15170_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Singapore.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297269.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01923_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.MOF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00273_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01607U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\RestartLimit.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01569_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-util-enumerations.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10264_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME47.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0171847.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Buenos_Aires.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Seoul.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02228_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.AU.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\dblook.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00242_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03453_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_right.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLOGO.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02756U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\WhiteDot.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Mauritius.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR43B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Network\NETWORK.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-tabcontrol.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Origin.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GR8GALRY.GRA shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0090070.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\splash.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Madeira shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\sRGB.pf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292272.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01461_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN027.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mr.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsMacroTemplate.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME45.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\form_edit.js shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vevay shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\ADD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-options-api.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\EMAILMOD.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\web\webbase.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsfra.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Gibraltar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10299_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00648_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\glass_lrg.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\VBCN6.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153299.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spl.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.ibm.icu_52.1.0.v201404241930.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR38F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14654_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Composite.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309904.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0384900.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Notes_LOOP_BG_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.PH.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsPreviewTemplate.html.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\CANYON.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EXCEL.DEV_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPM.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Modern.dotx shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0285750.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00014_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\web.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Qyzylorda.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Heart_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tashkent.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14883_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\main.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Eucla.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\THIRDPARTYLICENSEREADME-JAVAFX.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18256_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Horizon.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Slate\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Cuiaba shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105638.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\baseAltGr_rtl.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\msjet.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10336_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151073.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174315.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1CACH.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14513_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_VelvetRose.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233312.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PAPER_01.MID shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107728.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03459_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\AccessWeb\RPT2HTM4.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fy.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182898.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\SAVE.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-lib-uihandler.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-print_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107026.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\WebToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107452.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\trad_m.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00942_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Sts.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY01252_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bs\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bPrev.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-oql.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsIncomingImage.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Thatch.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\AUTHOR.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185842.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL089.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Beige.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01242_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fi.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\SETLANG_F_COL.HXK.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR12F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01361_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsBlankPage.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\features\[email protected] shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107262.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187851.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\3.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02405_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15301_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-annotations-common.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Istanbul.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\setNetworkServerCP.bat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ENV98SP.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\NUMERIC.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CERT.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382959.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hong_Kong.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\tzmappings shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rankin_Inlet.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0292286.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.Runtime.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\macroprogress.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw48.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\InfoPathOM\InfoPathOMFormServices\Microsoft.Office.InfoPath.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Oasis\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCRD98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305257.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00211_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\EXLIRMV.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-visual_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Status.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME09.CSS shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sk.txt shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-cn.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02282_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099177.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107500.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-multiview.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Luis.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBORDER.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01251_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115834.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\MINUS.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Blue_Gradient.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\cursors.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Salta.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AWARDHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086432.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115864.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205462.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00516L.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00235_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\22.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Samara.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\GrayCheck\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-visual.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238959.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00788_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0090781.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\16to9Squareframe_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESTL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\WSS\107.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\bin\Server\classes.jsa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14869_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageHistoryIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01239K.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15072_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-impl_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SHOT.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Slate.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01069_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00916_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_gray_thunderstorm.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Casablanca.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185834.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS10TARG.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01931J.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbytools.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Knox shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightOrange.css shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WHITEBOX.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\cue.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\San_Juan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14533_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\groove.net\SERVERS\Management.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-spi-quicksearch_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-javahelp.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLPERF.INI.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME05.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21302_.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Perf_Scenes_Subpicture1.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\sysinfo.bat.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guayaquil.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_es.properties.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\common.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00159_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21435_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cy.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Technic.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-explorer.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00247_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107456.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107750.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_zh_CN.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0284916.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Fancy.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15073_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN089.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21335_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\BLUECALM.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00799_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216540.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01358_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Andorra shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTFORM.DAT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21330_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Opulent.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01235U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-correct.avi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FORM.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099159.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105234.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300520.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OutSyncPC.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-4 shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-2.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD07761_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thule shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287415.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\MSTHED98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-host-remote.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Angles.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Executive.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Wallis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0215086.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301418.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Fortaleza.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR3B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_ContactHigh.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_photo_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME15.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR15F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18254_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00413_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Pushpin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0198016.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00049_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Miquelon.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCHDREQ.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14565_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CLASSIC1.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\1047x576_91n92.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15132_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\PingOpen.DVR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\MarkupIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART3.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL022.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\sound.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.DEV_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099158.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Kolkata.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-attach.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_08.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_mid_over.gif shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\CPU.Gadget\images\dial_sml.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\tzmappings.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21309_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\alt-rt.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Module.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\newgrounds.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\SIGN98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME38.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21336_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02753U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00837_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-actions_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0213243.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01242_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR33F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\rtf_increaseindent.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106208.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\common.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_LightSpirit.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00320_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105276.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21480_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTOPENWORLD.COM.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238983.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Inuvik.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\orb.idl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME50.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\RESENDS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\spanish.lng shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-templates_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaSansRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCD11.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Matamoros.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Bibliography\BIBFORM.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00638_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\utilityfunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Antigua shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\STS2\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN075.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MUAUTH.CAB shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\view.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02071_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\rtf_bullets.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00642_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00687_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR30F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\hu.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-swing-plaf_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\ADD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217262.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusDoNotDisturb.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15073_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.ini shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\powerpnt.exe.manifest.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\precomplete.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-keyring.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Boise.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Dialog.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PAPERS.INI.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\LightSpirit.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\TexturedBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\PROOF\MSWDS_FR.LEX.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\BlackTieMergeLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\InactiveTabImage.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB9.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00160_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297551.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUS\ProPlusWW.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-javahelp_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\MTEXTRA.TTF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0183198.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImageMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Chicago shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginResume.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00146_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\LightSpirit.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115844.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\common.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238333.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue\TAB_OFF.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107528.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152602.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0305493.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382961.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\precomplete shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME17.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD09664_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD14538_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\GIFT98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0232797.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PICSTYLES.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ReviewRouting_Review.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00439_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\SNEEZE.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImageMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\IntroducingPowerPoint2010.potx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21482_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107544.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107484.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\Access\libbluray-j2se-1.0.2.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0237336.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\TexturedBlue.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBCALSO.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPMS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\ChessIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21325_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\DEEPBLUE.INF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Nairobi.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationRight_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\bear_formatted_rgb6.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkNoDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK.HOL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORT.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01658_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\RestartLimit.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00417_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04206_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152878.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\STSLIST.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00623_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00560_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01298_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Psychedelic.jpg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tarawa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01040_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityMergeLetter.Dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\Sybase.xsl shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21304_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105506.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_divider.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Cayenne.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Dawson_Creek.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105530.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0332268.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0293238.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21535_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Newsprint.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\Fonts\FreeSans.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10300_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYER98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Faculty.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsColorChart.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01265U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200521.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Knox.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-swing-tabcontrol.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\APPTS.ICO shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\an.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Rankin_Inlet.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\Cache\artifacts.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALENDAR.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-attach.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh88.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\CONFIG\Modules\org-netbeans-modules-profiler-utilities.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18225_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Postage_VideoInset.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_plain_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\vignettemask25.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCL.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115875.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151047.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessApplications.RuntimeUi.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\My\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\ONGuide.onepkg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01468_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrorfromgroove.ico.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Currency.Gadget\icon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Syowa.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Beirut.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\CONTACTS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\utilityfunctions.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Concourse.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-heapwalker_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Desert.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00096_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaBrightDemiBold.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Porto_Velho shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+2.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN109.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Cordoba.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\spacebackupicons.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00703L.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derby.war.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Jujuy.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SoftBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00299_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-attach_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEMS.ICO shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\PublicFunctions.js.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ED00184_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01356_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\NAVBRPH1.POC shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\VideoWall\videowall.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.service.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\El_Aaiun.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-openide-nodes.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_OliveGreen.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Apex.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Swirl.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Faroe shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baku shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BORDERBB.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE05869_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE06049_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sk.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-1.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME20.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-lib-profiler-common_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\BG_ADOBE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vocaroo.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00902_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02829J.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14752_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL090.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\Content.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-api-caching_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\BUTTON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL027.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\VelvetRose.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\engdic.dat.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00345_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-over-DOT.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\CIEXYZ.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00544_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tbilisi shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10255_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked-loading.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0238927.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0301052.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\NotifierDisableDownArrow.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00132_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Anadyr shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR45B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21376_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\CALHM.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_left_pressed.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\tzmappings.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\EXITEM.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\VIEWBY.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01329_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Thatch.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DVDHM.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\setup.chm.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR9F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00442_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\french.lng.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00494_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\co.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Winnipeg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\YST9YDT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Marketing Projects.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_rtl.xml shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\chapters-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-8.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\ZoneInfoMappings shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN082.XML shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\MSTAG.TLB.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Flow.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\soundcloud.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-profiler.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21399_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsViewAttachmentIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04117_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149627.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\BG_ADOBE.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORT.CFG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\MSB1AR.LEX shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\hwrusash.dat shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BrightYellow.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01035U.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsPrintTemplate.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292152.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152688.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Maldives shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04369_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107516.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImages.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\BTINTERNET.NET.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TAIL.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jawt.h.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Santo_Domingo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-9 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME05.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21482_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS01638_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Port_Moresby shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-12.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292020.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00428_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN111.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187647.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15059_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00935_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\SWBELL.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Atikokan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Moscow shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT_COL.HXC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21422_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\TALK21.COM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00122_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\play_down.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Lagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\ROAD_01.MID shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pl.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Tallinn.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-progress.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apex.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\js\highDpiImageSwap.js shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\btn_search_down_BIDI.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_it.properties shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Back-48.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-api.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightOrange.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BrightYellow.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02845G.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-util-enumerations_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR44B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ro.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\manifest.json.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\folder.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR6B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107188.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Casey.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\ext\locale\updater_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\SATIN.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBLINK.POC shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Notes_btn-back-static.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME21.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\EquityReport.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Perth shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Galapagos.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\ARCTIC.INF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\custom.lua shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00042_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02450_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Brussels.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART1.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PACBELL.NET.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-application-views.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUNGLE.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01746_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\BASMLA.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\descript.ion shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\square.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Mexico_City shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyLetter.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGCAL.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18206_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBREF.XML shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\shatter.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Moscow.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01180_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01174_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\COPYRIGHT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Origin.xml shell.bin.exe File opened for modification C:\Program Files\7-Zip\descript.ion.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Chihuahua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD.DEV_COL.HXT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Verve.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152608.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\QUAD.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Perth shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Apothecary.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Argentina\Catamarca.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\INDOMAIN.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105974.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SPACE_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipsptb.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\include\jdwpTransport.h shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\javaws.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Abidjan shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Madrid.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21323_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21520_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21333_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\modern_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Funafuti.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Matamoros.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL078.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.ID.XML.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\el.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Darwin.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianMergeLetter.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\MST7 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18255_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400003.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03205I.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PROOF\MSGR3FR.LEX shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00234_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\sa.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00260_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN065.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Santiago.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\HEADINGBB.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Ust-Nera.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0301076.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00390_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00253_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00191_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107512.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\userContent_16x9_imagemask.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Cave_Drawings.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\tr.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-api-caching.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Casual.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageMaskSmall.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-5 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0088542.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Vincennes shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\FREN\WT61FR.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\ARROW.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ta\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01170_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Aspect.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152690.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImagesMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Niue shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00098_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00728_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL016.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0294991.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00170_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Swirl\background.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\MML2OMML.XSL shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Phoenix.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management-agent.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL095.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285780.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\latin1.shp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\logging.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Easter shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\XML Files\StarterApplicationDescriptors.xml shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\CAPSULES.ELM shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Tahiti shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Maputo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.xml shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\Skins\default.vlt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0221903.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233312.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Moncton.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187895.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PROTTPLV.XLS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Calendar\CalendarViewButtonImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGREPFRM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSWAVY.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00233_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationRight_ButtonGraphic.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DOCS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\MedianResume.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dhaka.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15059_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21342_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14565_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_browse.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Monticello.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR32F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGZIP.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL083.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-down.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_GreenTea.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.DPV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02127_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR7F.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00921_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15133_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03257_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_OffMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00397_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\gfserrorfromgroove.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02262_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Genko_2.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Caracas.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Sofia.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35F.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.json.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15059_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00334_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Sort\TITLE.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\MENUS.JS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TOC98.POC.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Tehran shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-modules.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-coredump_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00449_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\tools.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\Welcome.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\DISTLSTS.ICO shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\My\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\COPYRIGHT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME50.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107134.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.access shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00058_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+3.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00234_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107502.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\UnformattedNumeric.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD00155_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\on_desktop\slideshow_glass_frame.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Nipigon shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Phoenix.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR41F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_decreaseindent.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200189.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL081.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Amsterdam.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Sign.xsn shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15170_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02736U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PS2SWOOS.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00687_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Elegant.dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00254_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fi.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0183168.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Tucuman shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\New_Salem.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Prague.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Biscay\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\VIBE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\LimitUnlock.wma.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\SCDRESNS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS2BARB.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Fancy\PLUS.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10297_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0214948.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21427_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195260.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Bogota.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL048.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02024_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Media.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\ShadesOfBlue.jpg shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_buttongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0199661.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kathmandu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21312_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\EVRGREEN.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR11F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00736_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\main.css.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\shadowonlyframe_selectionsubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\dt.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Adjacency.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02051_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02069J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.security.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21342_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_ko_KR.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SlateBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_mid_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15301_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Horizon.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Origin.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00485_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\QP.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SpringGreen\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL105.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.RSA shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-autoupdate-services.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Christmas shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153313.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsScenesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+2 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-api_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\blank.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-jvm.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGWEBCAL.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.exe.sig shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-progress_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153087.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00687_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSACCESS_F_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01154_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-full.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\4to3Squareframe_Buttongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR48F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WSIDBR98.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN081.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\DumontDUrville.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\3082\MSO.ACL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_FormsHomePage.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FLYERHM.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\HEADING.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BANNER.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_MoveDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0278882.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationLeft_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Address.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00557_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBLINK.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\WARN.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Maputo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18184_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Premium.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunec.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSPUB.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185828.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART15.BDR.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Brussels shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\OUTEX2.ECF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107734.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Algiers.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\EST5.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\javaws.policy shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-core-windows.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0286068.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02126_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04323_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN105.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\NOTEBOOK.HTM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LETTHEAD.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-hot.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Urban.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0106958.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\RADIAL.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD01074_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00686_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\STRTEDGE.INF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Indian\Maldives shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\MessageAttachmentIconImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL048.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-execution_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Atlantic\Canary.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR23F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01152_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0235319.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendToOneNote.ini.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\HST10 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR24F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107254.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\Main.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\WINWORD_COL.HXT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0149627.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0250997.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\circleround_glass.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sampler_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Iqaluit.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Mazatlan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00076_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\nb.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Algiers shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson_Creek.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.NO.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Port-au-Prince.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR35B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME13.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB3A.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Paramaribo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\BabyBlue.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL011.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\AdjacencyResume.dotx shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\custom.lua.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Essential.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01013_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099149.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\RESUME.XML shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\en-US\settings.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Grand_Turk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Norfolk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21299_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Australia\Brisbane shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-editor-mimelookup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18218_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\bg_LightSpirit.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BZCARD11.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Clarity.eftx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00121_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105710.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaBrightDemiItalic.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\attention.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01586_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282932.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\URBAN_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02039_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-sendopts_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Oriel.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00610_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Phone.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Details.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Perspective.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0302827.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Creston.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\CollectSignatures_Init.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB7.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01292_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00932_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\ECLIPSE_.SF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Earthy.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Eucla.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\RTF_BOLD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyclient.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\uninstall\uninstall.log.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-text.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00405_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01682_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_06.MID shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\VideoLAN Website.url.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\RSSFeeds.Gadget\en-US\settings.html shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-5.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\DataServices\+NewSQLServerConnection.odc.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\addins\MSOSEC.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01680_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicTSFrame.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsViewFrame.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0282126.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\system_s.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\EST5EDT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205582.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGLINACC.DPV shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core-io-ui.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\POWERPNT.DEV_K_COL.HXK.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10255_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02022_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Adobe.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107302.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0212219.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Sales Pipeline.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0195788.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\cursors.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-masterfs-nio2.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Start End Dates.accft shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02439_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\SPACER.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Denver shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0241037.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02067_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WHIRL2.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGDOTS.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0400004.PNG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Winnipeg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\List.accdt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME07.CSS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00790_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02424_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectTool\Project Report Type\Basic\DEFAULT.XSL.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\mng2.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\java.policy.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Chatham.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15021_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0300520.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN04134_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\ECLIPSE.ELM shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\PreviousMenuButtonIcon.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\date-span-16.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR6F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107042.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Marengo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\DADSHIRT.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR00.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH01221K.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086420.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_choosecolor.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKUPD.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME19.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00669_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02028K.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\VideoLAN Website.url shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Couture.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152560.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN058.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\IPMS.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\TECHTOOL.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01060_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PARNT_02.MID shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\en-US\js\slideShow.js shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Manila shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-keyring-fallback_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\UCT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSTORYVERT.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187835.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01354_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\CET.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Adak.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\ContactSelector.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\Xlate_Complete.xsn.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME32.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.SharePoint.BusinessData.Administration.Client.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.ELM shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\720x480icongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-api-search_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-charts.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0195534.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-options-api.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\North_Dakota\Center shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14529_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01366_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185796.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15136_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\Browser\omni.ja shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\settings_right_pressed.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115855.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03339_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\StatusDoNotDisturb.ico shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\VelvetRose.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00174_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+7 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluHandle.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0292020.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\MST7MDT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Solstice.thmx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143743.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Rarotonga.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00526_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Adak shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\pkeyconfig-office.xrm-ms shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01236_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yekaterinburg shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Thunder_Bay.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-actions.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BIZFORM.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382963.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21533_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02048_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-modules-profiler-selector-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Kolkata.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.CO.NZ.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285808.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00261_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00629_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericon.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SAFRI_01.MID shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\TitleButtonSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-options_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Luxembourg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Oasis.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153514.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\en.ttt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_kor.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\MediaCenter.Gadget\images\Gadget_Star_Half.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\16_9-frame-background.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\release.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\QuickStyles\Elegant.dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199465.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-last-quarter.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Port_Moresby.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_GreenTea.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00231_.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\http.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jce.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Security\java.policy.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FieldTypePreview\PASSWORD.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\SAVE.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Guatemala shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\OriginMergeFax.Dotx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199475.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02262_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Discussion.css shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\README.TXT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107314.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.PL.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FORM.JS.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Novokuznetsk.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office Classic.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107514.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02400_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Antarctica\Macquarie.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Thimphu shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-threaddump_ja.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\OMSMMS.CFG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\TipsImageMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00297_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\divider-vertical.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.syntheticnotification.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-text.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Baku.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\fontconfig.bfc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR34F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02862_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_settings.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\deploy\messages_zh_CN.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105376.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ZoomIconsMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00232_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL096.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL097.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\RTF_BOLD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\an.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT-14.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\PST8PDT.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ONENOTE\SendtoOneNoteFilter.gpd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14693_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\POSTCARD.DPV shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\cy.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\calendars.properties shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Windhoek.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Pitchbook.potx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21495_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103262.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\SoftBlue.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OEMPRINT.CAT.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21376_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\ICE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Bucharest.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME51.CSS.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR8B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Maceio.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Analysis Services\AS OLEDB\10\Cartridges\sql2000.xsl.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18223_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21423_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Goose_Bay shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\bg_Groove.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105232.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE01797_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107290.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Things\SPLASH.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR50F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304875.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\fontconfig.properties.src.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Managua.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\MSTORE_F_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\WATER.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Campo_Grande.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\PINELUMB.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115842.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL108.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Singapore.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\REPORT.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\REPTWIZ.POC shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Enderbury shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Austin.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Grid.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR43B.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\button_left_disable.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01701_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\StopIconMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\kab.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Dawson shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Median.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms5\FormsPrintTemplateRTL.html.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01164_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00452_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\extensions\VLSub.luac.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ERROR.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\images\Cursors\win32_LinkDrop32x32.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02417U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\anevia_streams.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0187423.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Phoenix.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Halifax.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\latin1.shp.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Shanghai shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Adjacency.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\LINEACT.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0239943.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099181.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN03500_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tokyo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\1 Right.accdt shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\CASCADE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Tasks.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107350.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\th.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Journal\Templates\Dotted_Line.jtp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfxrt.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN002.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187819.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_alignleft.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-applemenu_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-common.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\WEBPAGE.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_FormsHomePage.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Dili shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Kwajalein.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD10308_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\BLENDS.INF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Aspect.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0151045.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Caracas.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Indiana\Tell_City shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\CUP.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveDocumentReview\ActiveTabImage.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsViewAttachmentIconsMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\Places\LASER.WAV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-modules-keyring-fallback.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Yerevan.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BrightYellow\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03331_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185818.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN001.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\BS53BOXS.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115841.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\CONCRETE.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Slate\TAB_OFF.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\WET.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMAIL.CFG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02759J.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0205462.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Darwin shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH00513_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15034_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Slipstream.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\UrbanReport.Dotx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD00435_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Opulent.thmx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\Shared24x24ImagesMask.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-queries_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\EXPEDITN.ELM shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0088542.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Hebron shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0297725.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\BORDERS\MSART8.BDR.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Tasks.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01063_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Yakutat shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.HTM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolBMPs\OutlineToolIconImages.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0199429.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Bougainville shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Thimphu.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_SlateBlue.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\OUTLOOK_COL.HXC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187815.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBBA\MSPUB10.BDR shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01149_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\SlideShow.Gadget\images\in_sidebar\bg_sidebar.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_btn-previous-static.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\ZoneInfoMappings.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TN00217_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.NO.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0278882.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\TR00097_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\removed-files shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPICCAP.DPV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152414.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.BusinessData.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02055_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Black Tie.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0187829.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE04050_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Qatar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Riyadh87.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD10297_.GIF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\ProjectStatusIconsMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02431_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01293_.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Security\US_export_policy.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR31F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0285484.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00798_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21370_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21505_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\SUMIPNTG.INF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\jfr\default.jfc.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\FormsBrowserUpgrade.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15021_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Aqtobe shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGSIDEBR.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281008.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\OUTDR_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Pohnpei.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\MANIFEST.MF shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\New_York.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Lime\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14829_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGMN092.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\SoftBlue\background.gif shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\az.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Americana.css.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\POSTITL.ICO.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0234131.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02369_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\RenameMount.ini.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR19F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB00673L.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02073_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_ON.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0086384.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\com.jrockit.mc.rjmx.actionProvider.exsd.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0089945.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18220_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Oasis\TAB_OFF.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-masterfs.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunjce_provider.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\STS2\TAB_ON.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\Author2String.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Circle_SelectionSubpictureB.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\bin\ij.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Guadalcanal shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Teal.css shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03143I.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Dili.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\SpringGreen\BUTTON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR28B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\AD.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\cmm\GRAY.pf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Magadan.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macHandle.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-lib-uihandler_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02025_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0217302.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\JOURNAL.INF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0186362.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\SegoeChess.ttf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Welcome Tool\IconImages.jpg.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.SE.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\jfr\default.jfc.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Casual.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\background.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\NVBELL.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\ModuleAutoDeps\org-openide-loaders.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00913_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21343_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB01741L.GIF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_cs.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01394_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Hardcover.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\common.js shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\images\settings_corner_top_right.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Fiji shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR51B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\af.txt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02265_.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\vi.txt.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Indiana\Indianapolis.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Part\Contacts.accdt shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\APPLAUSE.WAV.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\HICCUP.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\button_left_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH03014_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107488.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Sounds\People\Whistling.wav shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Havana.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME28.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18189_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SCHOL_02.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGNAVBAR.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\REFINED.ELM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\bg_Premium.gif.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Installed_resources14.xss shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107090.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0293800.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Pyongyang.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Juneau.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.HLP shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\CURRENCY.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0150150.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\novelty_h.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-shadow.png shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Tongatapu shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Swirl\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185798.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\WB02218_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBARBLL.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0278702.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\FOLDPROJ.XML shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SL01565_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\validation.js.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\28.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Atlantic\Reykjavik.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Noumea.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\BabyBlue\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE00934_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_bw32.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\BriefcaseIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0157177.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-core-kit.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21337_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PSRETRO.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174639.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Tiki.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GR8GALRY.GRA.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Aspect.eftx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Desert\HEADER.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02158_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO02253_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Mozilla Firefox\xul.dll.sig.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-modules-appui.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Australia\Melbourne.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR00.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.DE.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105588.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-application-views_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Colors\Concourse.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107492.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\id.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Kentucky\Louisville.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR26F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\button_left_over.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\BG_ADOBE.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\PSS10O.CHM.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Stationery\1033\JUDGESCH.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\AlertImage_Auto.jpg shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15020_.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\Stationery\Genko_2.emf shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-modules-javahelp.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\ext\sunec.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Rio_Branco.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Verve.eftx shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GROOVE_K_COL.HXK shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FD02068_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00006_.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0200377.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-options-keymap_zh_CN.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\Fonts\LucidaTypewriterRegular.ttf shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD15274_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21448_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ps.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00010_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\ADD.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0185774.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macGrey.png.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\EADOCUMENTAPPROVAL_INIT.XSN.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR9F.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00184_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Microsoft.Office.Interop.InfoPath.SemiTrust.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\photoedge_buttongraphic.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+5.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-tools_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Zurich.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21433_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\RenderingControl.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\bg_Casual.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\Students.accdt.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\profiler\Modules\org-netbeans-lib-profiler-ui.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PAGESIZE\PGLBL092.XML shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Schema\triggerActionExceptionHandlers.exsd shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7fr.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PNCTUATE.POC.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT+5 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE03668_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\SecretST.TTF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Riyadh88 shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN01545_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA02388_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0153307.WMF shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\Welcome.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-autoupdate-services_ja.jar shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+11.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Tashkent.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14755_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\ORIG98.POC.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\jamendo.luac shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\CommonData\CommsOutgoingImageSmall.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Apothecary.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\validation.js.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolIcons\OnLineBusy.ico.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\Certificates\Verisign\Components\VS_ComponentSigningIntermediate.cer.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0304371.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Americana\TAB_ON.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0281243.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00157_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-text.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Uzhgorod shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Europe\Warsaw.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0297185.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyScenesBackground.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belize shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Yekaterinburg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00392_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\create_stream.html shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18214_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01080_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_hyperlink.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO01566_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationUp_SelectionSubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Baghdad.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-openide-options.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SY00795_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Indian\Christmas shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD15184_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\03_lastfm.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BS00453_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\TEAROFF.POC shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\mset7es.kic.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGBOXES.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\J0115875.GIF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_widescreen_Thumbnail.bmp shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Accra.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-core.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+4 shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Couture.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0103402.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\PULLQUOTEBB.DPV.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21481_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.NO.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\YAHOO.COM.VN.XML.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\si\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\Modules\dkjson.luac.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BL00274_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\TABON.JPG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\main.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\J0115839.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-openide-dialogs_zh_CN.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\CONFIG\Modules\com-sun-tools-visualvm-api-caching.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Asia\Jayapura.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382970.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\Computers\computericonMask.bmp.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107132.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0136865.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\gadget.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Cairo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\GrooveForms5\FormsStyles\Solutions\gradient.png shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00364_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01145_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\etc\GMT+2.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\etc\GMT-3.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\INFOMAIL.CFG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\Icons\date-span-16.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR28F.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18202_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\images\bg-desk.png shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\weather.html shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Argentina\Rio_Gallegos shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Zaporozhye.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\ACCWIZ\ACWZLIB.ACCDE shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA00810_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD00255_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\GrayCheck\HEADER.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21343_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\Setup.xml.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR32F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02746U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01301_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02267_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-spi-quicksearch.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\README.TXT.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Pacific\Nauru shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms4\rtf_center.gif shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveForms\viewDblClick.js shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\IN00177_.WMF shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\cmm\LINEAR_RGB.pf.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\NA01866_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\SO00668_.WMF shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Full\pushplaysubpicture.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\Fonts\LucidaTypewriterRegular.ttf.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\locale\com-sun-tools-visualvm-heapdump_ja.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0234376.WMF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\Journal\THMBNAIL.PNG shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Maceio.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-modules-masterfs_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0107494.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\classlist.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR4B.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\VBA\VBA7\1033\FM20.CHM.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD14579_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\OutlookAutoDiscover\PRODIGY.NET.XML.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Bibliography\style\GostName.XSL.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Uzhgorod.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\visualvm\Modules\com-sun-tools-visualvm-threaddump.jar shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\deploy\messages_pt_BR.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\BD08808_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01139_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\Access\libbluray-j2se-1.0.2.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-swing-outline.xml shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\CET.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\EN00397_.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\LINES\BD21413_.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\CAGCAT10\J0233070.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Barbados shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\cursors.properties.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\images\Cursors\win32_CopyDrop32x32.gif.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\FORMS\1033\TASKACCL.ICO.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\MeetingIcon.jpg.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\images\flower_dot.png shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\ink\ipssve.xml shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Kaliningrad.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Fonts\Office 2.xml shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\36.png shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\CONFIG\Modules\org-netbeans-api-visual.xml shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PH02058U.BMP.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\WB01747_.GIF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Trek.thmx.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\AN00932_.WMF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0105338.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Damascus.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\classlist.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\PDIR24F.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\PE02287_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\HH01618_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\Publisher\Backgrounds\J0143745.GIF shell.bin.exe File opened for modification C:\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382957.JPG.32aa shell.bin.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceDaYi.txt shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Asia\Oral.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\America\Detroit shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\PUBWIZ\DGPUNCT.DPV shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\fy.txt.bak.32aa shell.bin.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0324694.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Document Themes 14\Theme Effects\Flow.eftx.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Auckland.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Africa\Abidjan.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\Access\DataType\Tags.accft.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBSPAPR\ZPDIR7B.GIF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\AUTOSHAP\BD18197_.WMF.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\locale\org-netbeans-core-windows_ja.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\visualvm\platform\Modules\org-netbeans-api-annotations-common.jar.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Groove\ToolData\groove.net\GrooveProjectToolset\WhiteboxMask.bmp.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\SystemV\AST4ADT shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0290548.WMF.bak.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\DD01167_.WMF shell.bin.exe File opened for modification C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\images\docked_black_moon-first-quarter.png shell.bin.exe File opened for modification C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsNotesBackground_PAL.wmv shell.bin.exe File opened for modification C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar.32aa shell.bin.exe File opened for modification C:\Program Files\Java\jre7\lib\zi\Antarctica\Syowa.32aa shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Media\OFFICE14\BULLETS\BD21298_.GIF shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\Media\WHOOSH.WAV shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\OFFICE14\1033\PUBFTSCM\SCHEME02.CSS shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\Templates\1033\ExecutiveReport.dotx shell.bin.exe File opened for modification C:\Program Files\Microsoft Office\CLIPART\PUB60COR\J0152568.WMF shell.bin.exe File opened for modification C:\Program Files\7-Zip\Lang\ps.txt.32aa shell.bin.exe -
Suspicious use of AdjustPrivilegeToken 4 IoCs
description pid Process Token: SeDebugPrivilege 280 shell.bin.exe Token: SeDebugPrivilege 1608 shell.bin.exe Token: SeDebugPrivilege 1608 shell.bin.exe Token: SeDebugPrivilege 1608 shell.bin.exe -
Suspicious use of WriteProcessMemory 5 IoCs
description pid Process procid_target PID 280 wrote to memory of 1608 280 shell.bin.exe 29 PID 280 wrote to memory of 1608 280 shell.bin.exe 29 PID 280 wrote to memory of 1608 280 shell.bin.exe 29 PID 280 wrote to memory of 1608 280 shell.bin.exe 29 PID 280 wrote to memory of 1608 280 shell.bin.exe 29
Processes
-
C:\Users\Admin\AppData\Local\Temp\shell.bin.exe"C:\Users\Admin\AppData\Local\Temp\shell.bin.exe"1⤵
- Suspicious use of SetThreadContext
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
PID:280 -
C:\Users\Admin\AppData\Local\Temp\shell.bin.exeC:\Users\Admin\AppData\Local\Temp\shell.bin.exe2⤵
- Modifies extensions of user files
- Drops file in Program Files directory
- Suspicious use of AdjustPrivilegeToken
PID:1608
-