Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
134s -
max time network
35s -
platform
windows7_x64 -
resource
win7v200430 -
submitted
11/06/2020, 07:42
Static task
static1
Behavioral task
behavioral1
Sample
00b2679e73e28343fd153df9858bc910.exe
Resource
win7v200430
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
00b2679e73e28343fd153df9858bc910.exe
Resource
win10v200430
windows10_x64
0 signatures
0 seconds
General
-
Target
00b2679e73e28343fd153df9858bc910.exe
-
Size
715KB
-
MD5
00b2679e73e28343fd153df9858bc910
-
SHA1
f27390cdca4afea0ffeda89f117931858e7f5a7f
-
SHA256
6396ea2ef48aa3d3a61fb2e1ca50ac3711c376ec2b67dbaf64eeba49f5dfa9df
-
SHA512
35b06555bd088bdcdd13f3377832073ebdae9053fe8a640c41470560da1f093abe65d6cfc4cfce30a9af708a8926ea646c801b6c155d0517e612f807472a7261
Score
10/10
Malware Config
Extracted
Path
C:\program files\7-zip\lang\!!FAQ for Decryption!!.txt
Ransom Note
Good day. All your files are encrypted. For decryption contact us.
Write here [email protected]
We also inform that your databases, ftp server and file server were downloaded by us to our servers.
* Do not rename encrypted files.
* Do not try to decrypt your data using third party software,
it may cause permanent data loss.
Emails
Signatures
-
Suspicious use of SetThreadContext 1 IoCs
description pid Process procid_target PID 1056 set thread context of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 -
Deletes itself 1 IoCs
pid Process 1312 cmd.exe -
Suspicious behavior: EnumeratesProcesses 7 IoCs
pid Process 900 svchost.exe 900 svchost.exe 900 svchost.exe 900 svchost.exe 900 svchost.exe 900 svchost.exe 900 svchost.exe -
Drops file in Program Files directory 5605 IoCs
description ioc Process File opened for modification C:\program files\common files\microsoft shared\stationery\pretty_peacock.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\btn-previous-static.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_copynodrop32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\tell_city svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-4 svchost.exe File created C:\program files\videolan\vlc\locale\zu\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\can32.clx svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\sybase.xsl svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\logo.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\seyes.emf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\dawson_creek svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\css\cpu.css svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\7.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-gibbous.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_cn_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\phoenix svchost.exe File opened for modification C:\program files\mozilla firefox\gmp-clearkey\0.1\clearkey.dll.sig svchost.exe File opened for modification C:\program files\7-zip\lang\eu.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_heb.xml svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\push\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\header-background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\date-span-16.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\curacao svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\modules\httprequests.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\tile16.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\7-zip\lang\eo.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_de.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\apia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\license.html svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sampler.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\management\management.properties svchost.exe File created C:\program files\videolan\vlc\skins\fonts\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\ebook.api svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.lts svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\ieinstal.exe.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_close_down.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\yekaterinburg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\enderbury svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\locale\it\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\legal\enu\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\review_browser.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\19.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\evrgreen\evrgreen.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\riyadh svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\security\local_policy.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css svchost.exe File created C:\program files\windows media player\network sharing\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\js\timezones.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\reveal_hov.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\ij svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+9 svchost.exe File opened for modification C:\program files\common files\system\ado\msado20.tlb svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passportmask.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\tahiti svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\jaccess.jar svchost.exe File created C:\program files\videolan\vlc\locale\ca\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\3difr.x3d svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rssbackblue_undocked.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\access.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\monaco svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+6 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\kerguelen svchost.exe File opened for modification C:\program files\windows mail\en-us\msoeres.dll.mui svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\lt.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\pixel\thmbnail.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator_1.1.0.v20131217-1203.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\wet svchost.exe File opened for modification C:\program files\resumeuse.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\1.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\office14\1033\msointl.dll.idx_dll svchost.exe File opened for modification C:\program files (x86)\google\update\1.3.35.452\googleupdatehelper.msi svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\28.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\3.png svchost.exe File opened for modification C:\program files\7-zip\lang\fr.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\css\calendar.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-8 svchost.exe File created C:\program files\mozilla firefox\browser\visualelements\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\excel.en-us\excelmui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\los_angeles svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\montreal svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-impl.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pst8pdt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\bn_in\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-gibbous.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\appinfodocument\addins.store svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ms.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blends\blends.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\krasnoyarsk svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ca.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\greenbubbles.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\textconv\wks9pxy.cnv svchost.exe File created C:\program files\common files\microsoft shared\themes14\canyon\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\add_up.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_over.png svchost.exe File created C:\program files\windows mail\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\adcjavas.inc svchost.exe File opened for modification C:\program files\7-zip\lang\pl.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7tsframe.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_zh_cn.jar svchost.exe File created C:\program files\windows sidebar\gadgets\currency.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_thunderstorm.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\setup.chm svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\fren\msb1fren.its svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboynotesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\atikokan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\meta-inf\manifest.mf svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\images\on_desktop\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\end_review.gif svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\sqloledb.rll svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\pause_rest.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\release-notes.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\jujuy svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\riga svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\vevay svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw120.jpg svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)graystateicon.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\clock.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_zh_cn.jar svchost.exe File opened for modification C:\program files\mozilla firefox\xul.dll.sig svchost.exe File opened for modification C:\program files\videolan\vlc\locale\sl\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\drag.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-first-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_up.png svchost.exe File created C:\program files\common files\microsoft shared\msinfo\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\publisher.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\andorra svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\selectmeasure.3g2 svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\cascade\cascade.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\btn-back-static.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\macau svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\mst7mdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_snow.png svchost.exe File created C:\program files (x86)\microsoft visual studio 8\common7\ide\publicassemblies\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\iris\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fontconfig.bfc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\version.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\equalizer_window.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\42.png svchost.exe File created C:\program files (x86)\common files\services\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\osknumpad\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\pushplaysubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\mazatlan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\booklist.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\cgmimp32.cfg svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\web\webbase.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\madrid svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application-views.xml svchost.exe File created C:\program files\videolan\vlc\locale\be\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows media player\media renderer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\ehshelllogo.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\resolute svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\novosibirsk svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\riyadh88 svchost.exe File created C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\reviews_sent.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-crescent.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_windy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider_right.png svchost.exe File created C:\program files\common files\microsoft shared\smart tag\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\spring\thmbnail.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\pago_pago svchost.exe File created C:\program files\videolan\vlc\locale\is\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\uk\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\27.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\35.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\tipres.dll.mui svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\sv.pak svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmpdmc.exe.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\currency.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\16_9-frame-background.png svchost.exe File opened for modification C:\program files\videolan\vlc\locale\hu\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\orange circles.htm svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\addinviews\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\boxed-correct.avi svchost.exe File created C:\program files\windows defender\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)greenstateicon.png svchost.exe File created C:\program files (x86)\windows nt\accessories\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\readme.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\radial\radial.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\cloud_thumbnail.bmp svchost.exe File opened for modification C:\program files (x86)\reference assemblies\microsoft\framework\v3.5\redistlist\frameworklist.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\peacock.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\bluecalm\preview.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\digsig.api svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\tesselate.x3d svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\gmail.crx svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\installer\chrome.7z svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\maputo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-1 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\maceio svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\zoneinfomappings svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\26.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\flyout.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.wpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\network\network.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kathmandu svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\moscow svchost.exe File opened for modification C:\program files\mozilla firefox\dependentlibs.list svchost.exe File created C:\program files (x86)\common files\system\msadc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppwmi.mof svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\play_hov.png svchost.exe File opened for modification C:\program files (x86)\common files\adobe\updater6\adobeaum_rootcert.cer svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\cpu.html svchost.exe File opened for modification C:\program files\7-zip\lang\ro.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\tirane svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\est5 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-ui.xml svchost.exe File created C:\program files\windows sidebar\gadgets\clock.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\chuuk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern_m.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_disabled.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\keypad\ea.xml svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\proofing.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msadcfr.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\alt-rt.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\rankin_inlet svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vba\vba6\vbe6ext.olb svchost.exe File opened for modification C:\program files\7-zip\lang\ne.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\inputpersonalization.exe.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\axis\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\cascade\cascade.elm svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\mazatlan svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\hand prints.htm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_page.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\goose_bay svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding_1.4.2.v20140729-1044.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\psfont.properties.ja svchost.exe File created C:\program files\videolan\vlc\locale\uz\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\33.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\detroit svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\chatham svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\view.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\reveal_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\numbers.xml svchost.exe File opened for modification C:\program files\common files\system\ole db\sqloledb.rll svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\optional\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\ink\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\it.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\sk-sk\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\refined\thmbnail.png svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msaddsr.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrenclm.dat svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrusash.dat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\cmm\srgb.pf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\scoresbysund svchost.exe File opened for modification C:\program files\java\jre7\lib\javafx.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\resolute svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\st_johns svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\fdffile_8.ico svchost.exe File created C:\program files (x86)\common files\microsoft shared\msinfo\en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\bin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\nairobi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\cuiaba svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\bahia_banderas svchost.exe File created C:\program files\videolan\vlc\plugins\demux\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\legal\enu\eula.ini svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\font\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\bears.htm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\startnetworkserver svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme_0.9.300.v20140424-2042.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\core.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\icon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\picturepuzzle.css svchost.exe File opened for modification C:\program files\common files\system\ole db\en-us\sqloledb.rll.mui svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\nome svchost.exe File opened for modification C:\program files\videolan\vlc\locale\am\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_hover.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\monrovia svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\zurich svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\modules\host.luac svchost.exe File created C:\program files\windows sidebar\gadgets\calendar.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ripple\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\scenes_intro_bg.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\costa_rica svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\th\lc_messages\vlc.mo svchost.exe File created C:\program files\common files\designer\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\lv-lv\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+8 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\highdpiimageswap.js svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk_1.0.300.v20140407-1803.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\uzhgorod svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\mst svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\youtube.luac svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1253.txt svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\adobe root certificate.cer svchost.exe File created C:\program files\common files\microsoft shared\themes14\studio\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_zh_cn.jar svchost.exe File opened for modification C:\program files\mozilla firefox\omni.ja svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bnext-disable.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\base-undocked-2.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rssbackblue_undocked.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ripple\thmbnail.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidabrightdemibold.ttf svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\flyout.css svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\cordoba svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\5.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppobjs-spp-plugin-manifest-signed.xrm-ms svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_floating.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-full.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\capsules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar svchost.exe File opened for modification C:\program files\windows media player\media renderer\avtransport.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_thunderstorm.png svchost.exe File opened for modification C:\program files\common files\system\ado\msado27.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\networkservercontrol svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\cuiaba svchost.exe File created C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\internet explorer\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextservicearray.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\js\slideshow.js svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\esen\wt61es.lex svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\samarkand svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\eucla svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\cocos svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar svchost.exe File opened for modification C:\program files\windows media player\media renderer\dmr_48.jpg svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_right_rest.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\localizedstrings.js svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\blackbars60.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multiview.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\berlin svchost.exe File created C:\program files\videolan\vlc\locale\et\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\background.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\glow.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_rainy.png svchost.exe File created C:\program files (x86)\common files\adobe\acrobat\activex\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kabul svchost.exe File opened for modification C:\program files\videolan\vlc\locale\nb\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows journal\en-us\journal.exe.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\tell_city svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kathmandu svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_double.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer_settings.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty_settings.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_right_mouseout.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\flyout.css svchost.exe File opened for modification C:\program files (x86)\microsoft.net\redistlist\assemblylist_4_client.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\en-us\sbdrop.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\init.js svchost.exe File created C:\program files\common files\microsoft shared\grphflt\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\parity.fx svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\noronha svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher_1.3.0.v20140911-0143.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\main.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system_settings.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\javafx.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\dublin svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\extensions\vlsub.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_left_mousedown.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\pss10r.chm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\panama svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\org.eclipse.rcp_root_4.4.0.v20141007-2301 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-javahelp.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-utilities.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper_1.0.400.v20130327-1442.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kabul svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\icon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)alerticon.png svchost.exe File created C:\program files\common files\microsoft shared\ink\hr-hr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\title_page_ref_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\12.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\axis\axis.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_image-frame-backglow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\eclipse_update_120.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\about.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\buttonup_off.png svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\swiftshader\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\concrete\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\plugins\video_filter\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\or\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\as90.xsl svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\lt.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\hong_kong svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-windows.jar svchost.exe File opened for modification C:\program files\mozilla firefox\browser\blocklist.xml svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\hi.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\css\clock.css svchost.exe File opened for modification C:\program files\7-zip\lang\kk.txt svchost.exe File opened for modification C:\program files\7-zip\lang\vi.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\el_salvador svchost.exe File opened for modification C:\program files\videolan\vlc\lua\meta\art\02_frenchtv.luac svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_trans_rgb.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\java.security svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\17.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\form_responses.gif svchost.exe File opened for modification C:\program files\common files\system\ole db\sqlxmlx.rll svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_precomp_matte.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\content-background.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-12 svchost.exe File opened for modification C:\program files\windows mail\en-us\winmail.exe.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\1047x576black.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmaintoscenesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\nipigon svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\bucharest svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+12 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\chagos svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\sql90.xsl svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_flyout_thumbnail_shadow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidatypewriterbold.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\merida svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_ja.jar svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\as90.xsl svchost.exe File opened for modification C:\program files\mozilla firefox\firefox.visualelementsmanifest.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\rssfeeds.js svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\form.zip svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\mainscroll.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\amd64\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtktsframe.png svchost.exe File created C:\program files\java\jre7\bin\server\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ca\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\volgograd svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\qyzylorda svchost.exe File opened for modification C:\program files\java\jre7\thirdpartylicensereadme.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_left_mouseout.png svchost.exe File opened for modification C:\program files\7-zip\lang\pa-in.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\mip.exe.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proof.fr\proof.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\matamoros svchost.exe File created C:\program files\windows media player\skins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\4.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-back-over-select.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\phoenix svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\vlm.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_few-showers.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\rectangles\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passportcover.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html svchost.exe File created C:\program files\videolan\vlc\locale\da\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\vlm.html svchost.exe File created C:\program files\windows sidebar\gadgets\mediacenter.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_up.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\decorative_rule.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository_1.2.100.v20131209-2144.jar svchost.exe File opened for modification C:\program files\7-zip\license.txt svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\proof.fr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\203x8subpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\maceio svchost.exe File created C:\program files\windows defender\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_flyout.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\it-it\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\dropins\readme.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiling.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\jamendo.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\js\calendar.js svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\previousmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench_3.106.1.v20140827-1737.jar svchost.exe File created C:\program files\videolan\vlc\locale\lt\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\logo.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\gu.pak svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\he.pak svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\alt-rt.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\chisinau svchost.exe File opened for modification C:\program files\videolan\vlc\locale\es\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\stream_window.html svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\groove.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\powerpoint.en-us\setup.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\logging.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\malta svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-crescent.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1028\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_trans_matte.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bprev-disable.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\drag.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\proof\mswds_en.lex svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bprev-hot.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\courierstd-oblique.otf svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\fi.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.cgm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\dnsns.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\halifax svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_ja_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\videolan\vlc\locale\vi\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipschs.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\rainy_river svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\aqtau svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\help\hx.hxt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\help\hxruntime.hxs svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_page_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\rio_gallegos svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar svchost.exe File created C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\combo-hover-left.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipscat.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml svchost.exe File created C:\program files\videolan\vlc\plugins\meta_engine\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\displaylanguagenames.en_gb.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\nextmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\caracas svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\blanc-sablon svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\auckland svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\port_of_spain svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bprev-hot.png svchost.exe File opened for modification C:\program files\java\jre7\license svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\mcimpp.mpp svchost.exe File opened for modification C:\program files\common files\system\msadc\adcjavas.inc svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\js\controllers.js svchost.exe File created C:\program files (x86)\common files\microsoft shared\portal\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\dataset.zip svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\sao_paulo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\ashgabat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.xmi_2.10.1.v20140901-1043.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\org-openide-filesystems.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\activity16v.png svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msadcfr.dll.mui svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msdaprsr.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationup_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\add_reviewer.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\brt.fca svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\31.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\scene_loop_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\conticon.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.sat4j.pb_2.3.5.v201404071733.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\cultures\office.odf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\parentmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\license svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\south_georgia svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ta\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\plugins\gui\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-first-quarter.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-last-quarter.png svchost.exe File opened for modification C:\program files\7-zip\lang\cs.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\alphabet.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\hebron svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\readme.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\rome svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\audio-48.png svchost.exe File opened for modification C:\program files\windows media player\network sharing\mediareceiverregistrar.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\algiers svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\azores svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator_3.3.300.v20140518-1928.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\abidjan svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\js\clock.js svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\smalllogocanary.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_blue_sun.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\luxembourg svchost.exe File opened for modification C:\program files\protectassert.rtf svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\interface.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrenalm.dat svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\btn-previous-static.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_top_left.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\orb.idl svchost.exe File created C:\program files\videolan\vlc\locale\ckb\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dialdot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\2.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml svchost.exe File opened for modification C:\program files\videolan\vlc\locale\bn\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\en-us\tabletextservice.dll.mui svchost.exe File opened for modification C:\program files\7-zip\lang\yo.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\water\water.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\perth svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_flyout.png svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\mdiparent.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower_settings.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dissolveanother.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\btn-next-static.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\locale\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\drag.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_blue_sun.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_snow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\aftrnoon\preview.gif svchost.exe File created C:\program files\common files\microsoft shared\themes14\compass\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\peacock.jpg svchost.exe File opened for modification C:\program files\expandresume.mpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\status.xml svchost.exe File created C:\program files\videolan\vlc\plugins\control\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\media renderer\dmr_48.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\brt04.hsp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_right.png svchost.exe File created C:\program files\common files\microsoft shared\office14\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\stucco.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\nextmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\uct svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_cn_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.descriptorprovider.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-settings.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\common.fxh svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\hovd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\malta svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-api.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\lv\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\symbols\ea-sym.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\layers\layers.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows photo viewer\en-us\photoviewer.dll.mui svchost.exe File created C:\program files\windows photo viewer\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows portable devices\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\tt.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-spi-actions.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ml\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\video-48.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\navback.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-full_partly-cloudy.png svchost.exe File opened for modification C:\program files\7-zip\lang\uk.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\eet svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\on_desktop\slideshow_glass_frame.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dial_lrg_sml.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\720x480icongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\tarawa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\windows defender\en-us\mpasdesc.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\deepblue\deepblue.elm svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_linkdrop32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\windhoek svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\danmarkshavn svchost.exe File opened for modification C:\program files\videolan\vlc\locale\nl\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\zh_tw\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\pfm\zy______.pfm svchost.exe File created C:\program files\common files\microsoft shared\source engine\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\qatar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\console_view.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\css\settings.css svchost.exe File created C:\program files (x86)\common files\microsoft shared\office14\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ricepapr\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\heart_videoinset.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\gaza svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\js\ui.js svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_ja.jar svchost.exe File created C:\program files\java\jre7\lib\zi\america\argentina\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\rings-dock.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_cloudy.png svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\xmlfile.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_up.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-oql.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\compresspush.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-lib-uihandler.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\ast4adt svchost.exe File opened for modification C:\program files\mozilla firefox\uninstall\uninstall.log svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\tracker\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\roses.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\th-th\tipresx.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\themes14\radial\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_precomp_matte_pal.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\chita svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\samara svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\yakutsk svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\rockbox_fm_presets.luac svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\usa37.hyp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\6.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\algiers svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\other-48.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\ppklite.api svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\iqaluit svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\pitcairn svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\compass\preview.gif svchost.exe File created C:\program files\videolan\vlc\locale\fa\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\speechengines\microsoft\tts20\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_movedrop32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxptsframe.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\bears.htm svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_corner_top_right.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\stopnetworkserver.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\guatemala svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\salta svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\js\main.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property_1.4.200.v20140214-0004.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-dialogs.xml svchost.exe File created C:\program files\videolan\vlc\locale\ug\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia.api svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\expeditn\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\btn-next-static.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmaintoscenesbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\dailymotion.luac svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_close_over.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\eclipse\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\rio_branco svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\mix.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7handle.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\north_dakota\beulah svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipscht.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\barbados svchost.exe File created C:\program files\videolan\vlc\locale\el\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\eu\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_snow.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\2052\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\16_9-frame-highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\gmt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-search_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server-15.jar svchost.exe File created C:\program files\videolan\vlc\locale\hy\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\plugins\access\libbluray-j2se-1.0.2.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\service.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_close_up.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\ant-javafx.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\vlc16x16.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\profile\profile.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\luac.luac svchost.exe File created C:\program files\videolan\vlc\plugins\d3d11\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\accessibility.api svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_corner_bottom_left.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\combo-hover-right.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\17.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\content.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_plain_thumbnail.bmp svchost.exe File created C:\program files\common files\microsoft shared\equation\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ro-ro\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui_5.5.0.165303.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\jfr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\ho_chi_minh svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\widevinecdm\license svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\juneau svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner_h.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\green bubbles.htm svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\id.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rsslogo.gif svchost.exe File created C:\program files\common files\microsoft shared\translat\enfr\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\vi.pak svchost.exe File opened for modification C:\program files\7-zip\lang\pt.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vbob6.chm svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad_settings.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\tokyo svchost.exe File created C:\program files\videolan\vlc\lua\playlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.0\workflow.targets svchost.exe File created C:\program files (x86)\msbuild\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_hover.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\inkwatson.exe.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sumipntg\sumipntg.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-tabcontrol.jar svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msadcer.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\vsto\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidasansdemibold.ttf svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs-nio2.xml svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\lisbon svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\aftrnoon\aftrnoon.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\rainy_river svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\yst9 svchost.exe File opened for modification C:\program files\videolan\vlc\locale\de\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\symbols\symbase.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\pt-br\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\monet.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\16_9-frame-image-mask.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\full.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\sports\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\cpu.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_rainy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_blue_snow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\1033\stocks.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sports_disc_mask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\rarotonga svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\kwajalein svchost.exe File created C:\program files\videolan\vlc\locale\tet\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\offset_window.html svchost.exe File created C:\program files\videolan\vlc\plugins\mux\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows nt\accessories\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_thunderstorm.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\ust-nera svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-actions.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_blue_sun.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\wake svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedbck2.gif svchost.exe File opened for modification C:\program files\videolan\vlc\locale\is\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\vdk10.std svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\setup files\{ac76ba86-7ad7-1033-7b44-a90000000001}\acroread.msi svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\glass.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_docked.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\9.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\ndjamena svchost.exe File created C:\program files\reference assemblies\microsoft\framework\v3.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ff\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\windows media player\media renderer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\layers\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxpblutsframe.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\batch_window.html svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\browse.xml svchost.exe File opened for modification C:\program files\windows photo viewer\en-us\imagingdevices.exe.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\flyout_background.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)graystateicon.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\turkish.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\include\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\sunjce_provider.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\dubai svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\luxembourg svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_blue_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)graystateicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text_3.5.300.v20130515-1451.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\add_over.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\tulip.jpg svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\logo.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrcommonlm.dat svchost.exe File created C:\program files\common files\microsoft shared\themes14\breeze\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\vgx\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\22.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\full\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\managua svchost.exe File created C:\program files\common files\microsoft shared\web server extensions\14\bin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msdaremr.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\button-overlay.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\oral svchost.exe File created C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\can.hyp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dial_sml.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\dot.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\previousmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_ja.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\godthab svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winclassictsframe.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\ushuaia svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\status.json svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\icon.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\slate\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color32.bmp svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\alerticon.png svchost.exe File opened for modification C:\program files\7-zip\lang\ja.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\push_title.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\sitka svchost.exe File created C:\program files (x86)\google\chrome\application\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\avtransport.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\psconfig.chm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\pushplaysubpicture.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\oldage\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\aqtobe svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-modules.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\graph_up.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\extensions\external_extensions.json svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\quad\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\huemainsubpicture2.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\reflect.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\scenebuttoninset_alpha2.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\ij.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar svchost.exe File created C:\program files\java\jre7\lib\security\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\ho_chi_minh svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymainbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\winnipeg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\studio\studio.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\papyrus\papyrus.inf svchost.exe File created C:\program files\common files\microsoft shared\themes14\sumipntg\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\push.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ach\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\nl.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\next_hov.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dissolvenoise.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\mst svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\fontconfig.properties.src svchost.exe File created C:\program files\videolan\vlc\locale\pt_br\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dismountresolve.aiff svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\navsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidasansregular.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\tzmappings svchost.exe File opened for modification C:\program files\videolan\vlc\locale\mk\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\hostsideadapters\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\en-gb.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner_m.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\equation\eqnedt32.hlp svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\esen\msb1esen.its svchost.exe File opened for modification C:\program files\common files\system\en-us\wab32res.dll.mui svchost.exe File opened for modification C:\program files\hidecompare.potm svchost.exe File opened for modification C:\program files\common files\microsoft shared\textconv\recovr32.cnv svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\breeze\breeze.elm svchost.exe File created C:\program files\common files\microsoft shared\themes14\papyrus\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_copynodrop32x32.gif svchost.exe File created C:\program files\videolan\vlc\locale\af\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\drag.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\pause_down.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\8.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\zh-tw\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\outlook.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner_m.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\enu\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\icon.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\drag.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-first-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_de_de.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt_1.1.1.v20140903-0821.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\paramaribo svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ast\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\icudtl.dat svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_corner_top_left.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\setting_back.png svchost.exe File created C:\program files\common files\microsoft shared\ink\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\radial\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circle_selectionsubpictureb.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\yakutsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\pago_pago svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins_1.1.200.v20131119-0908.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\plugin.jar svchost.exe File created C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_single.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)redstateicon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\proof\mswds_es.lex svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\palau svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\amsterdam svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\efate svchost.exe File created C:\program files\reference assemblies\microsoft\framework\v3.5\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\tet\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\mobile.css svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\displaylanguagenames.en_ca.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\san_luis svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-text_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-text.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_left_rest.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\vdk10.lic svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\open_original_form.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_over.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\martinique svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\uzhgorod svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\readme.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\dva.api svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\divider-vertical.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sonora\sonora.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\mendoza svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-12 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\updater.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\atikokan svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\swift_current svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\back_lrg.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\triangle.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_thunderstorm.png svchost.exe File created C:\program files\common files\microsoft shared\euro\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winclassichandle.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-uisupport.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_right_hover.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\curl.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_corner_bottom_right.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\bluecalm\thmbnail.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\level\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\time-span-16.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\studio\studio.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\4to3squareframe_videoinset.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\boa_vista svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.ui_1.1.200.v20130626-2037.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\cet svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\sql70.xsl svchost.exe File opened for modification C:\program files\videolan\vlc\skins\fonts\freesans.ttf svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmlaunch.exe.mui svchost.exe File opened for modification C:\program files\grantskip.dwg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\est svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-windows.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\porto_velho svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-last-quarter.png svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\redistlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\et-ee\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\system\ado\en-us\msader15.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-loaders.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\nauru svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextservicedayi.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\16to9squareframe_videoinset.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_image-frame-imagemask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\vilnius svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\maldives svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform.api svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\cgmimp32.fnt svchost.exe File created C:\program files\common files\microsoft shared\ink\it-it\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\iris\iris.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer_dot.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationleft_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\include\win32\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_pressed.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\genko_2.emf svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\roses.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\wrinkled_paper.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\dhaka svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\msjet.xsl svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\search_background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpclient_4.2.6.v201311072007.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)redstateicon.png svchost.exe File created C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\north_dakota\new_salem svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml svchost.exe File created C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\sk.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\tabskb.dll.mui svchost.exe File created C:\program files\internet explorer\signup\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\yellowknife svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\main.css svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_disabled.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\evrgreen\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\vignette\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\sydney svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\kiev svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\zaporozhye svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\mexico_city svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\greenbubbles.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmaintonotesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerconstraints.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-enumerations.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\reunion svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\widevinecdm\manifest.json svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\mshwlatin.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blends\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_babypink_thumbnail.bmp svchost.exe File opened for modification C:\program files\exitsuspend.7z svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_ja.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_few-showers.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\brisbane svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_glass_65_ffffff_1x400.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\reveal_hov.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_zh_cn.properties svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\2.png svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\usercontrol.zip svchost.exe File opened for modification C:\program files\7-zip\lang\nl.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-windows_ja.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annots.api svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\1033\phone.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\bluecalm\bluecalm.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\title_page_ref.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodicon.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\omsk svchost.exe File created C:\program files\videolan\vlc\locale\cy\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\id\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_double_orange.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbyrun.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_ja.jar svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\library.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_blue_windy.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\travelintrotomainmask_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\localedata.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-io-ui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-charts.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\pause_rest.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\prev_rest.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1250.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\prev_rest.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\33.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\cayenne svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-first-quarter.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\equation\eqnedt32.cnt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\tirane svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\buttons.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bprev-down.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system_s.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\turnoffnotificationintray.gif svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_notes-txt-background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\bahia_banderas svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\port-au-prince svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\noronha svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\mahe svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\weather.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\jdwptransport.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\zurich svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse_1.1.200.v20140414-0825.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\hu.pak svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\arctic\arctic.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-templates.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fr-fr\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipshrv.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\ulaanbaatar svchost.exe File opened for modification C:\program files\mozilla firefox\application.ini svchost.exe File opened for modification C:\program files\videolan\vlc\copying.txt svchost.exe File opened for modification C:\program files\windows photo viewer\en-us\photoacq.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_right.png svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmpnssci.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\vsto\10.0\vstoinstaller.config svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\selection_subpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\los_angeles svchost.exe File created C:\program files\videolan\vlc\locale\wa\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\mpvis.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\9.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\deepblue\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\bridge\accessbridgecalls.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\irkutsk svchost.exe File opened for modification C:\program files\windows journal\en-us\jntfiltr.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\thirdpartylicensereadme.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\tucuman svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\pyongyang svchost.exe File created C:\program files\windows sidebar\gadgets\clock.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_flyout.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\centeuro.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsnld.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_pt_br.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square_m.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\windowsmedia.mpp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower_dot.png svchost.exe File opened for modification C:\program files\common files\system\ole db\oledbvbs.inc svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\btn-back-static.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\denver svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\idtemplates\enu\adobeid.pdf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty_m.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ko-kr\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proof.es\proof.xml svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-ui.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\north_dakota\new_salem svchost.exe File opened for modification C:\program files\videolan\vlc\locale\gd\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\telnet.luac svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\jsprofilerui.dll.mui svchost.exe File created C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\draghandle.png svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\sunec.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\faroe svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\madrid svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\weblink.api svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\weather.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\met svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\tbilisi svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\favicon.ico svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\41.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\strtedge\preview.gif svchost.exe File opened for modification C:\program files\internet explorer\en-us\f12resources.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\javafx.policy svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di_1.0.0.v20140328-2112.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.nl_ja_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\reference assemblies\microsoft\framework\v3.5\redistlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\glow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\auxpad\auxbase.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\1033\msointl.dll.idx_dll svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\rssfeeds.css svchost.exe File opened for modification C:\program files (x86)\microsoft.net\redistlist\assemblylist_4_extended.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\msinfo\en-us\msinfo32.exe.mui svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-2 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_hover.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\tashkent svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\back.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_hail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\bissau svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png svchost.exe File opened for modification C:\program files\videolan\vlc\skins\winamp2.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\settings.ini svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\auxpad\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\proof\mswds_fr.lex svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\boldstri\boldstri.inf svchost.exe File created C:\program files\common files\microsoft shared\themes14\deepblue\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\chihuahua svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\css\settings.css svchost.exe File created C:\program files (x86)\windows mail\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_right_disabled.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\16_9-frame-overlay.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shadowonlyframe_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\travelintrotomain.wmv svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\access.en-us\accessmuiset.xml svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\proof.es\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\translat\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\photograph.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\softedges.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\dawson svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.zh_cn_5.5.0.165303.jar svchost.exe File created C:\program files\videolan\vlc\locale\ff\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\back.png svchost.exe File created C:\program files\common files\microsoft shared\ink\ru-ru\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\vsto\10.0\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_frame-highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\sysinfo svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\deploy\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\fiji svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\macquarie svchost.exe File created C:\program files\common files\microsoft shared\ink\pt-pt\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\ndjamena svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\riyadh89 svchost.exe File created C:\program files\java\jre7\lib\cmm\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\courierstd.otf svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\setup.swf svchost.exe File created C:\program files\common files\microsoft shared\stationery\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-print.jar svchost.exe File opened for modification C:\program files\windows media player\en-us\wmlaunch.exe.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_rest.png svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\resources\1033\msolui100.rll svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\13.png svchost.exe File opened for modification C:\program files\common files\system\ado\msado25.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt_0.11.101.v20140818-1343.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_double_orange.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_cloudy.png svchost.exe File opened for modification C:\program files\java\jre7\lib\sound.properties svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_divider_left.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\21.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_it.properties svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color32.jpg svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-full.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\strtedge\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\blackbars80.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\bishkek svchost.exe File created C:\program files\videolan\vlc\plugins\logger\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\cmap\identity-h svchost.exe File created C:\program files (x86)\windows photo viewer\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\cy.txt svchost.exe File opened for modification C:\program files\internet explorer\en-us\f12.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\heart_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\easter svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\windows sidebar\gadgets\mediacenter.gadget\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\el.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern_s.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\15x15dot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_ja.jar svchost.exe File opened for modification C:\program files\msbuild\microsoft\windows workflow foundation\v3.0\workflow.visualbasic.targets svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\thawte root certificate.cer svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\settingsinternal.zip svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\notes_btn-back-static.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\15x15dot.png svchost.exe File opened for modification C:\program files\java\jre7\lib\rt.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\helsinki svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\mobile_equalizer.html svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\javascripts\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\tr-tr\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\journal\preview.gif svchost.exe File created C:\program files\common files\system\msadc\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\omsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\fortaleza svchost.exe File opened for modification C:\program files\videolan\vlc\locale\kk\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_left_mouseover.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\shades of blue.htm svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.unt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\keypad\keypadbase.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\canary svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\sk\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\js\common.js svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\bn.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kuala_lumpur svchost.exe File opened for modification C:\program files\common files\system\ado\msadomd28.tlb svchost.exe File created C:\program files\videolan\vlc\locale\mai\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system_settings.png svchost.exe File opened for modification C:\program files\7-zip\lang\gl.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\watermar\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shadowonlyframe_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsnotesbackground.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\720x480icongraphic.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-10 svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\symbol.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad_dot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\1px.gif svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\contracts\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_ca.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\title_select-highlight.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+1 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_corner_top_left.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\module.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_kor.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\eclipse\eclipse.elm svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\mozilla firefox\updater.ini svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\speaker-32.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\css\currency.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\graph_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\oskmenu.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\muauth.cab svchost.exe File created C:\program files\common files\microsoft shared\themes14\strtedge\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\asuncion svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\init.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\notice svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\as_in\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\cgg\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows defender\en-us\msmpres.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\icon.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_blue_partly-cloudy.png svchost.exe File opened for modification C:\program files\7-zip\lang\ku.txt svchost.exe File opened for modification C:\program files\common files\system\ado\msado28.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\porto_velho svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\jawt.lib svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\leftnav.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\videolan\vlc\plugins\video_splitter\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_over.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)redstateicon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_foggy.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\mshwlatin.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ar-sa\tipresx.dll.mui svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\bin\dtplugin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\port_of_spain svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\row_over.png svchost.exe File opened for modification C:\program files\7-zip\lang\et.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\startnetworkserver.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_it.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\yakutat svchost.exe File created C:\program files\msbuild\microsoft\windows workflow foundation\v3.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\28.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_cloudy.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\secstorefile.ico svchost.exe File created C:\program files\common files\microsoft shared\ink\pt-br\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\journal\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\bahia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\auckland svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\pst8 svchost.exe File created C:\program files\java\jdk1.7.0_80\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\mozilla firefox\precomplete svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\logodev.png svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextservicesimplifiedshuangpin.txt svchost.exe File opened for modification C:\program files\7-zip\lang\nn.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\oskmenu\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\forms_distributed.gif svchost.exe File opened for modification C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\subsetlist\client.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\resolvesend.xht svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_few-showers.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationright_selectionsubpicture.png svchost.exe File created C:\program files\videolan\vlc\locale\ms\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1049\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\roses.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\winamac svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\css\slideshow.css svchost.exe File opened for modification C:\program files\7-zip\7-zip.chm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\dblook.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.metadataprovider.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\44.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\inuvik svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\recife svchost.exe File created C:\program files\videolan\vlc\plugins\visualization\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\tiptsf.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\zh-cn\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\system\ado\adovbs.inc svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\krasnoyarsk svchost.exe File created C:\program files\videolan\vlc\locale\oc\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_up.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\appinfodocument\microsoft.visualstudio.tools.office.appinfodocument\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\tile_bezel.png svchost.exe File created C:\program files\common files\speechengines\microsoft\tts20\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\beirut svchost.exe File opened for modification C:\program files\videolan\vlc\locale\it\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\idtemplates\enu\defaultid.pdf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\js\cpu.js svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\mng.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-execution.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\refined\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-14 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\locale\core_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\manaus svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\travelintrotomain_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\swift_current svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-api.jar svchost.exe File opened for modification C:\program files\mozilla firefox\gmp-clearkey\0.1\manifest.json svchost.exe File created C:\program files\videolan\vlc\lua\meta\reader\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\shorthand.emf svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jre7\lib\zi\america\kentucky\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\bg_sidebar.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)alerticon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\30.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwruklm.dat svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\nextmenubuttoniconsubpictur.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\menominee svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\jvm.hprof.txt svchost.exe File opened for modification C:\program files\windows media player\media renderer\renderingcontrol.xml svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\guam svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\reviewers.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\meta-inf\manifest.mf svchost.exe File created C:\program files (x86)\windows nt\tabletextservice\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\ct.sym svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\christmas svchost.exe File opened for modification C:\program files\windows journal\en-us\mspvwctl.dll.mui svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1251.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\localizedstrings.js svchost.exe File opened for modification C:\program files\7-zip\lang\kab.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\ojinaga svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\yst9 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_right_mouseover.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\office14\1033\msointl.rest.idx_dll svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\orangecircles.jpg svchost.exe File opened for modification C:\program files\common files\system\ado\adojavas.inc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-options.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\cue.luac svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\sendmail.api svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml svchost.exe File created C:\program files (x86)\adobe\reader 9.0\esl\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-full_partly-cloudy.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\day-of-week-16.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css svchost.exe File opened for modification C:\program files\mozilla firefox\fonts\twemojimozilla.ttf svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\tr.gif svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\v8_context_snapshot.bin svchost.exe File opened for modification C:\program files\7-zip\lang\zh-tw.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\zh-dayi.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\gtkhandle.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-favorites.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\adak svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system_m.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_divider_left.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_divider_right.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\8.0\vstaremotingserver.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\whitehorse svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_waitcursor.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.properties svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\spring\preview.gif svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\video_chroma\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\rssfeeds.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\pixel\pixel.inf svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\sakhalin svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\real.mpp svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\excel.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymainbackground.wmv svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_right_pressed.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\garden.jpg svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\soft blue.htm svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\16-on-black.gif svchost.exe File opened for modification C:\program files\internet explorer\en-us\networkinspection.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\faroe svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt_0.12.1.v20140903-1023.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\caracas svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\chrome.dll.sig svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\aftrnoon\aftrnoon.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\grand_turk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\knox svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\13.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsfra.xml svchost.exe File opened for modification C:\program files\common files\system\ole db\en-us\oledb32r.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\security\java.policy svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\buenos_aires svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\base-docked.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\rings-desk.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\1033\msointl.rest.idx_dll svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidatypewriterregular.ttf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\dushanbe svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\prague svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpsideshowgadget.exe.mui svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\can03.ths svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_left.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_top.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\47.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\canyon\thmbnail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\indust\indust.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\ushuaia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\yerevan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad_dot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_down.png svchost.exe File created C:\program files (x86)\common files\system\ado\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\drag.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\web.xml svchost.exe File created C:\program files\common files\microsoft shared\msinfo\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\network\network.inf svchost.exe File opened for modification C:\program files\dvd maker\offset.ax svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\16.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\activity16v.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\boldstri\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_copydrop32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\java.policy svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\azores svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\info.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\setup files\{ac76ba86-7ad7-1033-7b44-a90000000001}\data1.cab svchost.exe File created C:\program files (x86)\common files\microsoft shared\ink\1.7\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\zh-tw.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\add_up.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\postage_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\juneau svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_corner_bottom_left.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\saveasrtf.api svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado21.tlb svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\4to3squareframe_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passport_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidabrightdemiitalic.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\anadyr svchost.exe File created C:\program files\videolan\vlc\lua\extensions\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\1047x576_91n92.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\casey svchost.exe File created C:\program files\videolan\vlc\locale\sv\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows nt\accessories\en-us\wordpad.exe.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_bottom.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\xdpfile_8.ico svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_altgr.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\genko_1.emf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\refined\refined.elm svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\flippage\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\file_obj.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-charts.jar svchost.exe File opened for modification C:\program files\videolan\vlc\thanks.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_single_bkg_orange.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\css\settings.css svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\drvsoft.x3d svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\micaut.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\bear_formatted_matte2_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\blacklist svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\diagnostic-command-16.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-6 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\palau svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\9.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_blue_partly-cloudy.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1042\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\oskpred.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\branding.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\thule svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\ust-nera svchost.exe File opened for modification C:\program files\msbuild\microsoft\windows workflow foundation\v3.0\workflow.targets svchost.exe File opened for modification C:\program files\windows media player\network sharing\contentdirectory.xml svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\text.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_divider_right.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk15\windows-amd64\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\jfluid-server.jar svchost.exe File created C:\program files (x86)\common files\speechengines\microsoft\tts20\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\8.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\papyrus\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\photoedge_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\north_dakota\center svchost.exe File opened for modification C:\program files\videolan\vlc\locale\km\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\saslprep\saslprepprofile_norm_bidi.spp svchost.exe File created C:\program files\common files\microsoft shared\equation\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_ko_kr.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\etc\visualvm.conf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\guyana svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ko\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\ru\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\en-us\setup_wm.exe.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\5.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\lt-lt\tipresx.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\proof.en\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\edge\edge.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-5 svchost.exe File created C:\program files\common files\microsoft shared\ink\bg-bg\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\scenes_loop_bg_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\cacerts svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\paramaribo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+3 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\zaporozhye svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\myriadpro-bold.otf svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\buenos_aires svchost.exe File created C:\program files\mozilla firefox\defaults\pref\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\smalllogodev.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_blue_windy.png svchost.exe File created C:\program files\java\jre7\lib\zi\america\indiana\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\thule svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\ast4 svchost.exe File opened for modification C:\program files\closesubmit.mhtml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipskor.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\quad\quad.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\zu\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\34.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.rst svchost.exe File created C:\program files (x86)\common files\system\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\assemblyinfointernal.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square_m.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\notes_intro_bg_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\thimphu svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\midway svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.xml svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\monterrey svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\norfolk svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_glass_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-8 svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\thirdpartylicensereadme.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\spacer_highlights.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\browser\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\40.png svchost.exe File opened for modification C:\program files\7-zip\lang\he.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office32.ww\office32ww.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circleround_glass.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.intro_3.4.200.v20130326-1254.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\adobepdf.xdc svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\pfm\zx______.pfm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\goldring.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\marengo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf_3.4.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_ja.jar svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado25.tlb svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\de.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\weather.js svchost.exe File created C:\program files\common files\microsoft shared\office14\cultures\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\es\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dial.png svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\proplus\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\level\level.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\baghdad svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_play.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\uk.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\0.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationleft_buttongraphic.png svchost.exe File created C:\program files\java\jre7\lib\zi\systemv\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\sybase.xsl svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ta.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_pressed.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwruksh.dat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\funafuti svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpnssui.dll.mui svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\roses.jpg svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_foggy.png svchost.exe File opened for modification C:\program files\7-zip\lang\va.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\breeze\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\boldstri\boldstri.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\ir.idl svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-appui.xml svchost.exe File created C:\program files (x86)\common files\microsoft shared\vgx\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\form.zip svchost.exe File created C:\program files (x86)\windows photo viewer\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\hi\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower_m.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_thunderstorm.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\license svchost.exe File opened for modification C:\program files\unlockwatch.3gp svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_left.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\info.png svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\networkinspection.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\catamarca svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\4.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar svchost.exe File created C:\program files\videolan\vlc\locale\nb\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\am.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ricepapr\ricepapr.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-heapwalker.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\riyadh89 svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_ja.jar svchost.exe File created C:\program files\java\jre7\lib\deploy\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado27.tlb svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\arfr\msb1arfr.its svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\720_480shadow.png svchost.exe File opened for modification C:\program files\java\jre7\lib\content-types.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\wallis svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\drag.png svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\dmr_48.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\activity16v.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\1047x576black.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\brussels svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_down.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\abidjan svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\hebron svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-last-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\7-zip\lang\mng2.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\flavormap.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\cet svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\pdf.gif svchost.exe File opened for modification C:\program files (x86)\common files\adobe\updater6\adobeupdate.cer svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\tucuman svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-awt.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_divider_right.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core_2.3.0.v20131211-1531.jar svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\codefile.zip svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\usercontrol.zip svchost.exe File created C:\program files (x86)\mozilla maintenance service\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_ja_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\common files\microsoft shared\themes14\bluecalm\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_fr.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\casablanca svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\chicago svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\vancouver svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rsslogo.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\pine_lumber.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\vostok svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\casey svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpnssci.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\officemuiset.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.ibm.icu_52.1.0.v201404241930.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_foggy.png svchost.exe File opened for modification C:\program files\installselect.aiff svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\guadalcanal svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\metlakatla svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\damascus svchost.exe File created C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\cpu.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\15.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hu-hu\tipresx.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-keymap.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\jerusalem svchost.exe File created C:\program files\mozilla firefox\gmp-clearkey\0.1\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\skins\default.vlt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ka\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\buttondown_off.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\flyoutback.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\2.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\js\timezones.js svchost.exe File created C:\program files\common files\system\msadc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\indianapolis svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\khandyga svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\iexplore.exe.mui svchost.exe File opened for modification C:\program files\7-zip\lang\sv.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\watermar\watermar.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\scenebuttonsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\bin\jmc.ini svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\araguaina svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_win7.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer_h.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\help\keywords.hxk svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\handprints.jpg svchost.exe File opened for modification C:\program files\7-zip\lang\nb.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+11 svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\pddom.api svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.stc svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextservicesimplifiedquanpin.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\cayman svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\tahiti svchost.exe File opened for modification C:\program files\unprotectclose.ts svchost.exe File opened for modification C:\program files\unpublishsplit.vsd svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\11.png svchost.exe File opened for modification C:\program files\7-zip\lang\kaa.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\16_9-frame-highlight.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\manaus svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-modules-startup.xml svchost.exe File created C:\program files\windows sidebar\gadgets\clock.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_highlights_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\port_moresby svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\niue svchost.exe File opened for modification C:\program files\mozilla firefox\browser\features\[email protected] svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_hail.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bnext-hot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\kaliningrad svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-nodes.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\adobe air application installer.swf svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\help\hx.hxc svchost.exe File created C:\program files\common files\microsoft shared\themes14\cascade\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jre7\lib\zi\atlantic\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\review_email.gif svchost.exe File created C:\program files (x86)\windows mail\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\join.avi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-cli.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\resources.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ro.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\11.png svchost.exe File created C:\program files\videolan\vlc\locale\hr\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextservicesimplifiedzhengma.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\background.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\tile_drop_shadow.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\scene_button_style_default_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\asuncion svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\volgograd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\liveleak.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_star_full.png svchost.exe File created C:\program files\common files\microsoft shared\translat\frar\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_ja.jar svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextservicesimplifiedzhengma.txt svchost.exe File created C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\alerticon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\taipei svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\zh_tw\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\main\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\slate\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\metconv.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\hermosillo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\js\settings.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_over.png svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\eula.rtf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dial.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\sysinfo.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextserviceyi.txt svchost.exe File opened for modification C:\program files\7-zip\lang\si.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_right_disabled.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_main_background_quicklaunch.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsto\actionspane3.xsd svchost.exe File created C:\program files (x86)\common files\microsoft shared\web server extensions\14\bin\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\sk-sk\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\indust\indust.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\rankin_inlet svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\epl-v10.html svchost.exe File opened for modification C:\program files\videolan\vlc\locale\lg\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\plugins\audio_mixer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\office14\cultures\office.odf svchost.exe File created C:\program files (x86)\microsoft visual studio 8\vsta\bin\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\el.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\sr-latn-cs\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\breeze\breeze.inf svchost.exe File opened for modification C:\program files\importskip.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\winamac svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\reykjavik svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-api.jar svchost.exe File opened for modification C:\program files\mozilla firefox\crashreporter.ini svchost.exe File created C:\program files\videolan\vlc\locale\pl\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sonora\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\mainmenubuttonicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-queries.xml svchost.exe File opened for modification C:\program files\windows media player\skins\revert.wmz svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\icon.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\whitemask1047.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\readme-jdk.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar svchost.exe File opened for modification C:\program files\windows sidebar\en-us\sbdrop.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_pressed.png svchost.exe File opened for modification C:\program files\7-zip\lang\co.txt svchost.exe File opened for modification C:\program files\7-zip\lang\mr.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\usercontent_16x9_imagemask.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\1047_576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\curacao svchost.exe File opened for modification C:\program files\java\jre7\lib\cmm\pycc.pf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\localizedstrings.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-first-quarter.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\cmm\linear_rgb.pf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\matamoros svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-options-keymap.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\port_moresby svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\tarawa svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_left_hover.png svchost.exe File opened for modification C:\program files\7-zip\lang\sq.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsrus.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\es.pak svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\sql90.xsl svchost.exe File created C:\program files\common files\microsoft shared\themes14\network\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\rarotonga svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.application_5.5.0.165303.jar svchost.exe File created C:\program files\microsoft sync framework\v1.0\documentation\1033\license agreements\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\co\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\1033\readme.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.css.sac_1.3.1.v200903091627.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-options.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\petersburg svchost.exe File opened for modification C:\program files\videolan\vlc\locale\mn\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\month.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_right_rest.png svchost.exe File created C:\program files\common files\microsoft shared\web server extensions\14\bin\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\rt.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\edmonton svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\el_salvador svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_ja.jar svchost.exe File opened for modification C:\program files\mozilla firefox\platform.ini svchost.exe File opened for modification C:\program files\videolan\vlc\locale\tl\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_right.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\reykjavik svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\glace_bay svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\indianapolis svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\larrow.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\vimeo.luac svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-crescent_partly-cloudy.png svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\keypad\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passport.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_it.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidabrightitalic.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\81.0.4044.129.manifest svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_divider_left.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\manila svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\bucharest svchost.exe File opened for modification C:\program files\java\jre7\lib\management\jmxremote.password.template svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\icons\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\watermar\watermar.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt_0.12.100.v20140530-1436.jar svchost.exe File opened for modification C:\program files (x86)\common files\adobe\help\en_us\adobe reader\9.0\helpmap.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked-loading.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-full.png svchost.exe File opened for modification C:\program files\7-zip\lang\ms.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\button-highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_ja.jar svchost.exe File opened for modification C:\program files\7-zip\lang\ky.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\cursors.properties svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\outlook.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\copenhagen svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info svchost.exe File opened for modification C:\program files\java\jre7\lib\calendars.properties svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\drag.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_over_bidi.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-gibbous.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\to_do_list.emf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\deepblue\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsscenesbackground_pal.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\perf_scenes_mask1.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\casablanca svchost.exe File opened for modification C:\program files\videolan\vlc\locale\hr\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\18.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\jaccess.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\havana svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\nicosia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi_3.10.1.v20140909-1633.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\minsk svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ja\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower_m.png svchost.exe File created C:\program files (x86)\common files\system\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad_h.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\profile\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\tile16.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\frar\msb1frar.its svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\sofia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services_3.4.0.v20140312-2051.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\icon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\istanbul svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\mozilla maintenance service\logs\maintenanceservice-install.log svchost.exe File created C:\program files\common files\microsoft shared\themes14\water\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\jvmti.h svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql_2.0.100.v20131211-1531.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-impl.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\as_in\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\gl\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1040\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\rtscom.dll.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bg-today.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\version.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\san_juan svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.rsd svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\bogota svchost.exe File created C:\program files\videolan\vlc\locale\ga\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\iedvtool.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\tipres.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\osknumpad\osknumpadbase.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square_settings.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_docked.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\prcr.x3d svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\picturepuzzle.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-progress.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\curl-hot.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\el_aaiun svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\cmap\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\blanc-sablon svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\mst7mdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\kiritimati svchost.exe File created C:\program files\java\jre7\lib\zi\asia\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\pl\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bg-desk.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\shapecollector.exe.mui svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\andorra svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\samara svchost.exe File created C:\program files\java\jre7\lib\zi\pacific\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\divider-horizontal.png svchost.exe File opened for modification C:\program files\7-zip\lang\fa.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\grid_(inch).wmf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\bluecalm\bluecalm.elm svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\settings.js svchost.exe File created C:\program files\common files\microsoft shared\themes14\rmnsque\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\38.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\equation\mtextra.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-outline.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\base-undocked-4.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\scenes_loop_bg.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbytools.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\sa-jdi.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\apifile_8.ico svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsdan.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\paris svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\samarkand svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_single.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\currency.js svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\pontianak svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\rss.gif svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\smalllogobeta.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\drag.png svchost.exe File opened for modification C:\program files\internet explorer\en-us\eula.rtf svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_fr.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\san_luis svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.idx svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\tehran svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\12.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\vsto\vstoee100.tlb svchost.exe File opened for modification C:\program files\windows media player\media renderer\connectionmanager_dmr.xml svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextserviceamharic.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\bin\server\classes.jsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\est5 svchost.exe File opened for modification C:\program files\7-zip\lang\af.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\zoneinfomappings svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bnext-hot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty_dot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\icon.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\garden.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\pixel\preview.gif svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\inuvik svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\javascripts\jsbytecodewin.bin svchost.exe File opened for modification C:\program files\common files\system\ado\msado21.tlb svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\welcome.html svchost.exe File opened for modification C:\program files\videolan\vlc\locale\fa\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\locale\tr\lc_messages\vlc.mo svchost.exe File created C:\program files\windows sidebar\gadgets\clock.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\currency.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\1.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-ui.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\br\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\44.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\panel_mask.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passport.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidatypewriterregular.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.properties svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\tile_bezel.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\office14\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\broken_hill svchost.exe File opened for modification C:\program files\windows media player\network sharing\connectionmanager.xml svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\assemblyinfo.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ricepapr\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ext_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\apia svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\11.png svchost.exe File opened for modification C:\program files\7-zip\lang\ug.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\brussels svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-nodes_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\copyright svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\moncton svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msaddsr.dll.mui svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\nacl_irt_x86_64.nexe svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_right_hover.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\layers\layers.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\management-agent.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-new_partly-cloudy.png svchost.exe File created C:\program files\videolan\vlc\locale\eu\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\checkers.api svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_over.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\symbols.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\enderbury svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\divider-vertical.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\logo.png svchost.exe File opened for modification C:\program files\7-zip\lang\lv.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipscsy.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\minsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\rome svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kamchatka svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\addinsideadapters\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\sound.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\chisinau svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\dt.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\jujuy svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\jakarta svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\noumea svchost.exe File opened for modification C:\program files\7-zip\lang\mk.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\lagos svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\gmt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\bg\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\fi\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw48.jpg svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\36.png svchost.exe File opened for modification C:\program files\7-zip\lang\bn.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\south_georgia svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\bougainville svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\basmla.xsl svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_down.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxpblue.png svchost.exe File opened for modification C:\program files\mozilla firefox\update-settings.ini svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\10.png svchost.exe File opened for modification C:\program files\common files\system\ole db\oledbjvs.inc svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\informix.xsl svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern_settings.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider_right.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\tl.gif svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msdaremr.dll.mui svchost.exe File opened for modification C:\program files\convertunprotect.jpeg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\calendar.html svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1252.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\pixel\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\whiteband.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jvm.hprof.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mru_on_win7.css svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw48.png svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\logo.png svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\symbols\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\travelintrotomainmask.wmv svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\microsoft sql server compact edition\v3.5\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\audio_filter\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_mcelogo_mouseout.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\adobe\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\nl-nl\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\kerguelen svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach.zh_cn_5.5.0.165303.jar svchost.exe File created C:\program files\videolan\vlc\locale\gd\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\curl-hot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\delete_over.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\prev_hov.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\oskmenu\oskmenubase.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\ffjcext.zip svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\cape_verde svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\prev_down.png svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\meipreload\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_foggy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\aftrnoon\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\stopnetworkserver svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\la_rioja svchost.exe File created C:\program files\java\jre7\lib\zi\europe\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\46.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-new.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_over_bidi.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\connectivity.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\jce.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\gambier svchost.exe File created C:\program files\videolan\vlc\plugins\text_renderer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_blue_windy.png svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\dmr_48.jpg svchost.exe File opened for modification C:\program files\addwatch.pot svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty_s.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\sand_paper.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationright_buttongraphic.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\zh_cn\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\zh_cn\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\index.html svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\enutxt.pdf svchost.exe File opened for modification C:\program files\7-zip\lang\hy.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\16_9-frame-image-inset.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\thirdpartylicensereadme-javafx.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\adelaide svchost.exe File created C:\program files (x86)\microsoft visual studio 8\vsta\bin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+10 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.expressions_3.4.600.v20140128-0851.jar svchost.exe File created C:\program files\java\jre7\lib\zi\etc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\hst10 svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\bg.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\library.js svchost.exe File created C:\program files\common files\microsoft shared\themes14\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\bandwidth.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\cmm\gray.pf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\new_york svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-io.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\halifax svchost.exe File created C:\program files\videolan\vlc\locale\tl\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern_s.png svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\f12tools.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\gifimp32.flt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\tipband.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\monaco svchost.exe File opened for modification C:\program files\mozilla firefox\browser\features\[email protected] svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_right.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\escript.api svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\logocanary.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\icon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blueprnt\blueprnt.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\chagos svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.win32.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\nicosia svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\utc svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\folder-48.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\base-undocked-2.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\management\snmp.acl.template svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\currie svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\groove.en-us\setup.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\powerpoint.en-us\powerpointmui.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\notes-static.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.http_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\riga svchost.exe File opened for modification C:\program files\mozilla firefox\browser\features\[email protected] svchost.exe File opened for modification C:\program files\reference assemblies\microsoft\framework\v3.0\winfxlist.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square_s.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\is.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\numbers\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\melbourne svchost.exe File opened for modification C:\program files\java\jre7\lib\management\snmp.acl.template svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\quad\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\iris\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vbhw6.chm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circle_selectionsubpicturea.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup-impl.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\santa_isabel svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\dumpmeta.luac svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+12 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\mst7mdt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_single_orange.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\css\calendar.css svchost.exe File opened for modification C:\program files\7-zip\lang\hu.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\jvmticmlr.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\amd64\jvm.cfg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\danmarkshavn svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\yakutat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-6 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\mauritius svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dialdot_lrg.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ice\ice.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\curtains.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\reveal_rest.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\on_desktop\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\an.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\blue_gradient.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-loaders.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\square.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_few-showers.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\titlebuttonsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif svchost.exe File opened for modification C:\program files\videolan\vlc\locale\brx\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_over.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\fortaleza svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\syowa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_ja.jar svchost.exe File created C:\program files\java\jre7\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\fr\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\mobile_view.html svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\en-us\tabletextservice.dll.mui svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\splashscreen.zip svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer_3.2.200.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\santarem svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\mawson svchost.exe File created C:\program files\microsoft sync framework\v1.0\runtime\x64\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\eng32.clx svchost.exe File opened for modification C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.5\workflow.targets svchost.exe File created C:\program files (x86)\windows defender\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.jpg svchost.exe File created C:\program files\videolan\vlc\locale\fy\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\previousmenubuttoniconsubpi.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidabrightregular.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\puerto_rico svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\guam svchost.exe File created C:\program files (x86)\common files\system\ado\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\1.png svchost.exe File opened for modification C:\program files\7-zip\lang\ca.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\level\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet_3.0.0.v201112011016.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_gtk.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-heapwalker.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\havana svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\clock.html svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\msttsloc.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\title_stripe.png svchost.exe File created C:\program files\internet explorer\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\plugin.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\pst8 svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\bbc_co_uk.luac svchost.exe File created C:\program files\videolan\vlc\plugins\lua\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-new_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\36.png svchost.exe File opened for modification C:\program files\7-zip\lang\en.ttt svchost.exe File created C:\program files\common files\microsoft shared\vba\vba7\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\marquesas svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-icons_ef8c08_256x240.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\setup files\{ac76ba86-7ad7-1033-7b44-a90000000001}\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\textconv\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-next-static.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\thirdpartylicensereadme.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system.png svchost.exe File opened for modification C:\program files\7-zip\lang\ps.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_cs.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-explorer.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\canary svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\nav_rightarrow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_linknodrop32x32.gif svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\measurefind.txt svchost.exe File opened for modification C:\program files\windows journal\en-us\nbmaptip.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\te.pak svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\dataset.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_few-showers.png svchost.exe File created C:\program files\common files\microsoft shared\ink\pl-pl\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-visual.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml svchost.exe File opened for modification C:\program files\videolan\vlc\locale\fi\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)greenstateicon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_blue_snow.png svchost.exe File created C:\program files\common files\microsoft shared\smart tag\lists\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\postage_videoinset.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\warsaw svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui_2.3.0.v20140404-1657.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kolkata svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\pmp\adobepdf417.pmp svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\localedata.jar svchost.exe File created C:\program files\videolan\vlc\plugins\audio_output\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\adcvbs.inc svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\dropins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\istanbul svchost.exe File opened for modification C:\program files\videolan\vlc\lua\sd\icecast.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\delete_down.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\drive.crx svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsen.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\msb1cach.lex svchost.exe File created C:\program files\common files\microsoft shared\web folders\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_zh_cn.jar svchost.exe File created C:\program files\java\jre7\lib\zi\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\services_discovery\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color120.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\rssfeeds.js svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_trans_notes.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_zh_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw32.bmp svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\settings.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_down_bidi.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\notes_intro_bg.wmv svchost.exe File opened for modification C:\program files\internet explorer\en-us\jsprofilerui.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\cst6cdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar svchost.exe File created C:\program files\videolan\vlc\locale\en_gb\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty_h.png svchost.exe File created C:\program files (x86)\windows nt\accessories\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\gu.txt svchost.exe File opened for modification C:\program files\common files\system\ole db\en-us\msdasqlr.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\bridge\accessbridgecalls.c svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\belem svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\denver svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bg-today.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_up.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\css\localizedsettings.css svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsto\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_bottom_right.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+9 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\honolulu svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar svchost.exe File created C:\program files\mozilla firefox\browser\features\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\video_output\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\audiodepthconverter.ax svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\monterrey svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.continuation_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\40.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\quad\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\bin\javacpl.cpl svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\st_johns svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\rothera svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kamchatka svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\combo-hover-right.png svchost.exe File created C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows media player\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\layers\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\pitcairn svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\seoul svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\main_background.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sky\sky.elm svchost.exe File created C:\program files\common files\microsoft shared\translat\arfr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\whitevignette1047.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.identity_3.4.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-execution_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\galapagos svchost.exe File opened for modification C:\program files\selectregister.mp4v svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\peacock.htm svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\ext\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\ast4adt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-modules.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\warsaw svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-crescent_partly-cloudy.png svchost.exe File created C:\program files (x86)\windows nt\tabletextservice\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\johannesburg svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\keypad.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\access.en-us\accessmui.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\axis\thmbnail.png svchost.exe File created C:\program files\dvd maker\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\23.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\music.emf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\pagecurl.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\budapest svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\kaliningrad svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_right_mousedown.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_docked.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\14.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\rtc.der svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\buttondown_on.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\videowall\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\bridge\accessbridgecallbacks.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\moncton svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\kosrae svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\drag.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_down_bidi.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\sky\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\menominee svchost.exe File created C:\program files\windows nt\tabletextservice\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\turnoffnotificationinacrobat.gif svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.udt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\infopath.en-us\setup.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blueprnt\thmbnail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\profile\profile.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\notes_loop.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setnetworkservercp.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\riyadh87 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\niue svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\skins\fonts\freesansbold.ttf svchost.exe File opened for modification C:\program files\windows sidebar\settings.ini svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\settings.zip svchost.exe File opened for modification C:\program files\7-zip\lang\it.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\echo\echo.inf svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\bs\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\30.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\evrgreen\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-attach.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\9.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\gimap.jar svchost.exe File created C:\program files\videolan\vlc\locale\he\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\id\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.syd svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\stop_collection_data.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\slideshow.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\boxed-split.avi svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\word.en-us\wordmui.xml svchost.exe File created C:\program files\common files\microsoft shared\themes14\ripple\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\satin\satin.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\push_item.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\inkobj.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\hst svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\javafx-doclet.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-ui.jar svchost.exe File created C:\program files\videolan\vlc\lua\modules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboyscenesbackground_pal.wmv svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\play_rest.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\on_desktop\slideshow_glass_frame.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_pt_br.properties svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\el-gr\tipresx.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\oskpred\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\sunjce_provider.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\managua svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-snaptracer.jar svchost.exe File created C:\program files\videolan\vlc\locale\mr\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\news.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\corner.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\graph_over.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_floating.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_divider_left.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\easter svchost.exe File created C:\program files\common files\microsoft shared\ink\fi-fi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\stars.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\compass\compass.inf svchost.exe File created C:\program files\common files\microsoft shared\themes14\profile\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\ceuta svchost.exe File created C:\program files\videolan\vlc\locale\te\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\8.png svchost.exe File opened for modification C:\program files (x86)\internet explorer\signup\install.ins svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\boa_vista svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\46.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\delete.avi svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\arctic\thmbnail.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\satin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\rings-dock.png svchost.exe File created C:\program files\common files\microsoft shared\dw\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\expeditn\expeditn.elm svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\stacking\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\kentucky\louisville svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\fa.pak svchost.exe File opened for modification C:\program files\7-zip\lang\ast.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\nb-no\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\rmnsque\rmnsque.elm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\water\water.inf svchost.exe File created C:\program files\videolan\vlc\locale\fur\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\en-us\wmplayer.exe.mui svchost.exe File created C:\program files (x86)\adobe\reader 9.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked-loading.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\capsules\capsules.inf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\echo\echo.elm svchost.exe File created C:\program files\common files\system\ado\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circleround_videoinset.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-keyring-fallback.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiling_zh_cn.jar svchost.exe File created C:\program files\microsoft synchronization services\ado.net\v1.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpdmc.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\uarrow.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\jhall-2.0_05.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\colombo svchost.exe File opened for modification C:\program files\java\jre7\thirdpartylicensereadme-javafx.txt svchost.exe File created C:\program files\internet explorer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\modules\dkjson.luac svchost.exe File opened for modification C:\program files (x86)\windows photo viewer\en-us\photoacq.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationleft_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\tripoli svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\detroit svchost.exe File created C:\program files\videolan\vlc\skins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_wmc_logotext.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\graph.emf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\rmnsque\preview.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\cambridge_bay svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\css\flyout.css svchost.exe File opened for modification C:\program files (x86)\msbuild\microsoft.office.infopath.targets svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\3.png svchost.exe File created C:\program files (x86)\mozilla maintenance service\logs\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blends\blends.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+4 svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\agmgpuoptin.ini svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\29.png svchost.exe File created C:\program files\java\jre7\lib\ext\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\cmap\identity-v svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\js\clock.js svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\oskpred\oskpredbase.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\15x15dot.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\curl.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer_m.png svchost.exe File opened for modification C:\program files\7-zip\lang\de.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-cli.jar svchost.exe File created C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\system\msadc\adcvbs.inc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\prc\myriadcad.otf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\guayaquil svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\tehran svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_hover.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\next_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\web server extensions\14\bin\1033\fpext.msg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\1047x576_91n92.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\stream_config_window.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square_settings.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\huecycle\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationup_buttongraphic.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\rio_gallegos svchost.exe File opened for modification C:\program files\dvd maker\secretst.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\resources.jar svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\msjet.xsl svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\de-de\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\bougainville svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\compass\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmainbackground_pal.wmv svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office32.en-us\setup.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\babypink.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\sunmscapi.jar svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\extensions\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kuala_lumpur svchost.exe File created C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.stp svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\iceland.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\bg-bg\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\iqaluit svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\meta-inf\manifest.mf svchost.exe File created C:\program files\videolan\vlc\locale\kn\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_star_half.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)alerticon.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\hr.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\icon.png svchost.exe File created C:\program files\videolan\vlc\locale\ps\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\server_lg.gif svchost.exe File opened for modification C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\redistlist\frameworklist.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\launcher.win32.win32.x86_64.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-7 svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\enu\dynamic.pdf svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\usa03.hsp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\jvm.lib svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ne\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system_h.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_snow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blueprnt\blueprnt.inf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\papyrus\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher_1.1.0.v20131211-1531.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\panama svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bprev.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_top.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\santa_isabel svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding_1.6.200.v20140528-1422.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\pa\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextservicearray.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-new.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\keypad\kor-kor.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\cayman svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\jayapura svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\tongatapu svchost.exe File created C:\program files\videolan\vlc\locale\ka\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows mail\en-us\winmail.exe.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system_s.png svchost.exe File opened for modification C:\program files\mozilla firefox\removed-files svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_hail.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_floating.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\feature.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\kuching svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsita.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multiview_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\locale\co\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)notconnectedstateicon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\1033\stocks.dat svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\knox svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\dummy.luac svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bnext-down.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-progress.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_rest.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\slideshow.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\slideshow_glass_frame.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsjpn.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\bangkok svchost.exe File opened for modification C:\program files (x86)\windows photo viewer\en-us\imagingdevices.exe.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_hail.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_hail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\level\level.elm svchost.exe File created C:\program files\common files\system\ole db\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\readme.html svchost.exe File opened for modification C:\program files\java\jre7\lib\security\us_export_policy.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\slate\slate.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\barbados svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\mexico_city svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\pst8pdt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\blank.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.app_1.3.200.v20130910-1609.jar svchost.exe File created C:\program files\java\jre7\lib\images\cursors\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmpnssui.dll.mui svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\pt_br\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\common files\adobe\updater6\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\update\1.3.35.452\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\perf_scenes_subpicture1.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-visual.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-progress-ui.jar svchost.exe File created C:\program files\videolan\vlc\locale\ach\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\24.png svchost.exe File created C:\program files (x86)\common files\system\ole db\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\7-zip\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_ja.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\iris\iris.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\bear_formatted_rgb6.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\budapest svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\cmm\ciexyz.pf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\catamarca svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\lord_howe svchost.exe File opened for modification C:\program files\microsoft sync framework\v1.0\documentation\1033\license agreements\synchronizationeula.rtf svchost.exe File created C:\program files\videolan\vlc\plugins\codec\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\en-us\sqlxmlx.rll.mui svchost.exe File opened for modification C:\program files\checkpointlock.tif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\regina svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\tongatapu svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpdmccore.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_mcelogo_mouseover.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dialdot.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\green bubbles.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_zh_tw.properties svchost.exe File created C:\program files\videolan\vlc\lua\http\dialogs\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\infopath.en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-13 svchost.exe File opened for modification C:\program files\videolan\vlc\lua\meta\art\00_musicbrainz.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.base.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\enu\signhere.pdf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_sv.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.event_1.3.100.v20140115-1647.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\dublin svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ro\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\common files\system\en-us\wab32res.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\sv-se\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-uisupport.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\jfr.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\guadalcanal svchost.exe File created C:\program files\microsoft analysis services\as oledb\10\cartridges\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\cy\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_few-showers.png svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\oledbjvs.inc svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipssrb.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.actionprovider.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\jsse.jar svchost.exe File opened for modification C:\program files\syncrestore.tif svchost.exe File created C:\program files\videolan\vlc\lua\http\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\37.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\boot.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-favorites.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-icons_228ef1_256x240.png svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msadcor.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\ffjcext.zip svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\about.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\simferopol svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_pressed.png svchost.exe File created C:\program files\common files\microsoft shared\ink\he-il\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\hu-hu\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\indust\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\lima svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\simferopol svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileregistry\jmc.profile\1423861240811.profile.gz svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\rothera svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-14 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_rainy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\seoul svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymaintonotesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\creston svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\thunder_bay svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\efate svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\fontconfig.bfc svchost.exe File opened for modification C:\program files\java\jre7\lib\security\trusted.libraries svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\maputo svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\peacock.htm svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\highdpiimageswap.js svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msadcer.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\nav_uparrow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-full_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\displaylanguagenames.en_us_posix.txt svchost.exe File opened for modification C:\program files\mozilla firefox\browser\features\[email protected] svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\system\ole db\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+5 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.beans_1.2.200.v20140214-0004.jar svchost.exe File created C:\program files\videolan\vlc\plugins\stream_filter\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\displaylanguagenames.en_us.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\en-us\msdaorar.dll.mui svchost.exe File opened for modification C:\program files\7-zip\lang\pt-br.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\khandyga svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-print.xml svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\pmp\qrcode.pmp svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado20.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\tools.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\back-48.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\main.html svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\distribute_form.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\myriadpro-regular.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\logo.png svchost.exe File opened for modification C:\program files\7-zip\lang\az.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\sofia svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ia\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\readme.htm svchost.exe File created C:\program files (x86)\common files\microsoft shared\msenv\publicassemblies\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\widevinecdm\_platform_specific\win_x64\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\js\calendar.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_ring_docked.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proplus\setup.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sky\preview.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\jfr\default.jfc svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\master_preferences svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-last-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\soft blue.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\glass_lrg.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileregistry\jmc.profile\1423861261279.profile.gz svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-tabcontrol.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\khartoum svchost.exe File created C:\program files\videolan\vlc\lua\meta\art\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\row_over.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\la_paz svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\utc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\az\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\divider-horizontal.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\cyrillic.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\travel.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\us_export_policy.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-applemenu.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-compat.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\est5edt svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpmediasharing.dll.mui svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\resourceinternal.zip svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\madeira svchost.exe File created C:\program files\mozilla firefox\fonts\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\brx\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-gibbous.png svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_movenodrop32x32.gif svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\blank.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern_settings.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\bears.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\arctic\arctic.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\reunion svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\broken_hill svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\cst6 svchost.exe File opened for modification C:\program files\videolan\vlc\locale\hi\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\drvdx8.x3d svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bprev-disable.png svchost.exe File created C:\program files\common files\microsoft shared\vsto\10.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\1047x576black.png svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_ko.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\guayaquil svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\met svchost.exe File opened for modification C:\program files\videolan\vlc\locale\hy\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\montevideo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\oracle.gif svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\6.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\courierstd-bold.otf svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\sqlxmlx.rll svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\subsetlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\info.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\play_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\shadesofblue.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboynotesbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_basestyle.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml svchost.exe File created C:\program files\windows sidebar\gadgets\clock.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\review_shared.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_left_rest.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\logo.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\1033\stintl.dll.idx_dll svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ice\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\corpchar.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\8.0\x86\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\officemui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\local_policy.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-windows.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\cmm\gray.pf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\la_paz svchost.exe File created C:\program files\videolan\vlc\locale\sk\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_close_down.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\zh-cn.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\reveal_rest.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\browse_window.html svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\koreus.luac svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ja.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\capsules\thmbnail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\level\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\karachi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\ast4 svchost.exe File opened for modification C:\program files\java\jre7\lib\meta-index svchost.exe File created C:\program files\videolan\vlc\locale\br\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\textconv\wksconv\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner_settings.png svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidabrightitalic.ttf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner_s.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\prev_down.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_close_down_bidi.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-outline.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\icon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\29.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\combo-hover-middle.png svchost.exe File created C:\program files\dvd maker\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_widescreen_thumbnail.bmp svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\darwin svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_rainy.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\create_form.gif svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\mr.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dial_lrg.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.model.workbench_1.1.0.v20140512-1820.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\london svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\playlist.xml svchost.exe File opened for modification C:\program files (x86)\reference assemblies\microsoft\framework\v3.0\winfxlist.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty_h.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\png32.flt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\derby_common.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\stockholm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar svchost.exe File opened for modification C:\program files\microsoft sync framework\v1.0\runtime\x64\resources\1033\synchronization.rll svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\review_same_reviewers.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\pdffile_8.ico svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\logo.png svchost.exe File created C:\program files\common files\microsoft shared\ink\cs-cz\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\1033\time.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\javaws.policy svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_divider_right.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\diner_h.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_thunderstorm.png svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\publisher.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\lists\1033\dates.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\vsto\vstoee90.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_fr.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui_4.0.100.v20140401-0608.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\belgrade svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\sql2000.xsl svchost.exe File created C:\program files\microsoft sync framework\v1.0\runtime\x64\resources\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\js\slideshow.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad_m.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\inkobj.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\javafx-mx.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sendopts.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\beirut svchost.exe File created C:\program files\videolan\vlc\locale\kk\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows photo viewer\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\icon.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-crescent.png svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\visualizer.zip svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\locale\jfluid-server_zh_cn.jar svchost.exe File created C:\program files\java\jre7\lib\amd64\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\packetizer\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\21.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\arctic\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\redmenu.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_specialocc_thumbnail.bmp svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-remote.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\echo\thmbnail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sky\sky.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\urumqi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\noumea svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-ui.jar svchost.exe File created C:\program files\videolan\vlc\lua\intf\modules\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\boldstri\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\eurosti.ttf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\scoresbysund svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+5 svchost.exe File created C:\program files\videolan\vlc\locale\si\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_windy.png svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado28.tlb svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\lv.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\bogota svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\shanghai svchost.exe File created C:\program files\videolan\vlc\locale\de\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_corner_bottom_right.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\20.png svchost.exe File created C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\santarem svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-2 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\dhaka svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\vdk10.lng svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\digest.s svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\1px.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsesp.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.w3c.dom.events_3.0.0.draft20060413_v201105210656.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\thunder_bay svchost.exe File opened for modification C:\program files\videolan\vlc\lua\modules\sandbox.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\3.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\external_extensions.json svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipssve.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\groove.en-us\groovemui.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blends\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\irkutsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidabrightdemiitalic.ttf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-first-quarter.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\journal\journal.elm svchost.exe File created C:\program files\common files\microsoft shared\themes14\refined\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\meta-index svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw48.bmp svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\en-us\msader15.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\ink\tr-tr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setnetworkservercp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\miquelon svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\alert_obj.png svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\textfile.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_rainy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\wpgimp32.flt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sumipntg\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.io_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_ja.jar svchost.exe File created C:\program files\videolan\vlc\locale\ia\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner_settings.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\onenote.en-us\onenotemui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\dblook svchost.exe File created C:\program files\java\jdk1.7.0_80\db\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\pipeline.v10.0\pipelinesegments.store svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\chrome.visualelementsmanifest.xml svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\clock.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\lindeman svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\araguaina svchost.exe File opened for modification C:\program files\windows defender\en-us\mpevmsg.dll.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_rainy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\concrete\concrete.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\license svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\indian\cocos svchost.exe File opened for modification C:\program files\videolan\vlc\locale\mai\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)redstateicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpnetwk.exe.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-execution.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\tiptsf.dll.mui svchost.exe File created C:\program files\java\jdk1.7.0_80\db\bin\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jre7\lib\zi\antarctica\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\yerevan svchost.exe File opened for modification C:\program files\videolan\vlc\locale\oc\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows journal\en-us\pdialog.exe.mui svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsto\vstoee90.tlb svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passport_mask_right.png svchost.exe File created C:\program files\videolan\vlc\locale\my\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\stars.jpg svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsptb.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\panel_mask_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\meta-inf\manifest.mf svchost.exe File created C:\program files\videolan\vlc\locale\bn\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\minionpro-bold.otf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\blafdoc.css svchost.exe File created C:\program files\common files\microsoft shared\themes14\concrete\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\ks_in\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)notconnectedstateicon.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\203x8subpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\jakarta svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_ja.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\correct.avi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\jni.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\graystateicon.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\meipreload\preloaded_data.pb svchost.exe File opened for modification C:\program files\videolan\vlc\locale\gu\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\rssbackblue_docked.png svchost.exe File opened for modification C:\program files\7-zip\history.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\novokuznetsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-windows_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\31.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_trans_rgb_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\machandle.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\troll svchost.exe File opened for modification C:\program files\videolan\vlc\locale\et\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad_m.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm svchost.exe File created C:\program files\videolan\vlc\locale\ml\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\bears.jpg svchost.exe File created C:\program files\common files\microsoft shared\ink\sv-se\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\16_9-frame-image-mask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\prodbig.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.resources_3.9.1.v20140825-1431.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\urumqi svchost.exe File created C:\program files\common files\microsoft shared\themes14\aftrnoon\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vbui6.chm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\mainimage-mask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vblr6.chm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jsse.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-windows.xml svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\as80.xsl svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7.png svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\widevinecdm\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bprev-down.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer_dot.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\numbers\numbase.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setnetworkclientcp.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\lua\http\css\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\plugins\misc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\en-us\sidebar.exe.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymaintonotesbackground_pal.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\parentmenubuttonicon.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\goose_bay svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\kentucky\louisville svchost.exe File created C:\program files\videolan\vlc\locale\fr\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_disabled.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\compass\compass.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\scrapbook.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+10 svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msadox28.tlb svchost.exe File created C:\program files\common files\microsoft shared\smart tag\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circleround_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\btn-previous-static.png svchost.exe File opened for modification C:\program files\java\jre7\lib\psfontj2d.properties svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ks_in\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\delete_over.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\shades of blue.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\cascade\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\brisbane svchost.exe File opened for modification C:\program files\7-zip\lang\sk.txt svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\babygirl\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\khartoum svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\notification_plugin.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\aqtobe svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\mosaic_window.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\textconv\wpft532.cnv svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\pixel\pixel.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\toronto svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileregistry\jmc.profile\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jmx.xml svchost.exe File opened for modification C:\program files\videolan\vlc\locale\sq\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dial_lrg.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\graph_down.png svchost.exe File opened for modification C:\program files\7-zip\lang\fur.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\infopath.en-us\infopathmui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bg-dock.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\cancun svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\core_visualvm.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_ja.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\next_rest.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\25.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\eclipse\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\pontianak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-common.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer_settings.png svchost.exe File opened for modification C:\program files\7-zip\lang\sl.txt svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\onenote.en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\ice\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\santo_domingo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\mst7 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-uihandler.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\amman svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\youtube.crx svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\tanspecks.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\expeditn\preview.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\copenhagen svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bnext-disable.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\picturepuzzle.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\37.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\shadesofblue.jpg svchost.exe File created C:\program files\common files\microsoft shared\themes14\echo\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\north_dakota\center svchost.exe File created C:\program files\mozilla firefox\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\bermuda svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\papyrus\papyrus.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\boise svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\melbourne svchost.exe File opened for modification C:\program files\common files\system\ado\msadox28.tlb svchost.exe File opened for modification C:\program files\internet explorer\en-us\jsdbgui.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\32.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-options_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-progress-ui.xml svchost.exe File created C:\program files (x86)\microsoft visual studio 8\common7\ide\privateassemblies\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\rtstreamsink.ax svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\vincennes svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\sydney svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\paris svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\psfont.properties.ja svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-lib-uihandler.xml svchost.exe File opened for modification C:\program files\dvd maker\rtstreamsource.ax svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\dili svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\est5edt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\bl.gif svchost.exe File created C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\cs.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square_s.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\word.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\hermosillo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\readme.txt svchost.exe File created C:\program files\windows journal\en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows media player\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\appconfigurationinternal.zip svchost.exe File opened for modification C:\program files (x86)\windows mail\en-us\msoeres.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_left_pressed.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setembeddedcp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-actions_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\accessibility.properties svchost.exe File opened for modification C:\program files\unprotectopen.vbe svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\search5.api svchost.exe File created C:\program files\common files\microsoft shared\themes14\expeditn\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\themes.inf svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\pfm\sy______.pfm svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\hand prints.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_rtl.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\release svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\nipigon svchost.exe File opened for modification C:\program files\windows journal\en-us\jnwmon.dll.mui svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw32.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\btn-next-static.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_frame-shadow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\kwajalein svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_win.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-charts.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_bottom_left.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\garden.htm svchost.exe File created C:\program files (x86)\common files\microsoft shared\vba\vba6\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\info.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\saipan svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\library.js svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\search.api svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\setupmetrics\20200430124749.pma svchost.exe File created C:\program files\videolan\vlc\plugins\access_output\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\indust\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\vincennes svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-last-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\equation\eqnedt32.exe.manifest svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\lv-lv\tipresx.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\en-us\wmm2clip.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\sunec.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse_2.1.200.v20140512-1650.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\ba.txt svchost.exe File created C:\program files\common files\microsoft shared\msclientdatamgr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derby.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_bottom.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\cst6cdt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\words.pdf svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\class.zip svchost.exe File created C:\program files\common files\microsoft shared\ink\zh-cn\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\btn-back-static.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\performance\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kuching svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-5 svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\reviews_joined.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\reviews_super.gif svchost.exe File opened for modification C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.5\workflow.visualbasic.targets svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\security\blacklist svchost.exe File opened for modification C:\program files (x86)\reference assemblies\microsoft\framework\v3.5\subsetlist\client.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\canyon\canyon.inf svchost.exe File created C:\program files\common files\microsoft shared\themes14\iris\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\feature.properties svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ms\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\uk\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\notconnectedstateicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\splash.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.ja_5.5.0.165303.jar svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-core-kit.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-spi-quicksearch.jar svchost.exe File created C:\program files\videolan\vlc\locale\bn_in\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\11.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\15.png svchost.exe File created C:\program files\common files\microsoft shared\filters\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.contenttype_3.4.200.v20140207-1251.jar svchost.exe File opened for modification C:\program files\mozilla firefox\plugin-container.exe.sig svchost.exe File opened for modification C:\program files\videolan\vlc\new_skins.url svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\oledbvbs.inc svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\tulip.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\makassar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_zh_cn.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\dawson svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msado26.tlb svchost.exe File opened for modification C:\program files\7-zip\lang\hi.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\windhoek svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\forms_received.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_left_hover.png svchost.exe File opened for modification C:\program files\7-zip\lang\sr-spc.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\blueprnt\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\strtedge\strtedge.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\belize svchost.exe File created C:\program files (x86)\google\update\install\{790fb95e-131f-4b1a-93cd-438f382ab794}\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-gibbous.png svchost.exe File opened for modification C:\program files\7-zip\lang\sa.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\north_dakota\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmpmediasharing.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system_m.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\wake svchost.exe File created C:\program files\videolan\vlc\lua\http\js\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\ja-jp\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sonora\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\button-highlight.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationright_buttongraphic.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1036\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\setupmetrics\20200430125146.pma svchost.exe File opened for modification C:\program files\7-zip\lang\ar.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\palmer svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\fakaofo svchost.exe File opened for modification C:\program files\videolan\vlc\locale\el\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\delete_up.png svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\versions\1.0\template.msi svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\mdiparent.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ja-jp\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\network\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-previous-static.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\est5edt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms_3.6.100.v20140422-1825.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\sao_paulo svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\dili svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\tallinn svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextservicesimplifiedshuangpin.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\dotted_lines.emf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\copyright svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.console_1.1.0.v20140131-1639.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_main_gradient.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1258.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\quad\quad.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository_1.1.300.v20131211-1531.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jetty.server_8.1.14.v20131031.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-first-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-api-caching.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\anevia_xml.luac svchost.exe File created C:\program files\videolan\vlc\lua\sd\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\oslo svchost.exe File created C:\program files\java\jre7\lib\zi\africa\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_down.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\nome svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\logobeta.png svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\resources\1033\msmdsrv.rll svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_left_rest.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\journal\journal.inf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\eucla svchost.exe File created C:\program files\java\jre7\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\warning.gif svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\layers\thmbnail.png svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_single_orange.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_top.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\whitedot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\enfr\msb1enfr.its svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\error_window.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\profile\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\refined\refined.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern_dot.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\adobe\zdingbat.txt svchost.exe File opened for modification C:\program files\common files\system\msadc\handsafe.reg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-api_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\server_issue.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\icon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\water\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fonts\lucidabrightdemibold.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\anchorage svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\lord_howe svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\help.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-multitabs.jar svchost.exe File opened for modification C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.0\workflow.visualbasic.targets svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rssbackblue_docked.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_windy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\rtscom.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox_1.0.500.v20131211-1531.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\si\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\google\update\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipssrl.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\filters.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\pohnpei svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-output2.jar svchost.exe File opened for modification C:\program files\videolan\vlc\readme.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bnext.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\45.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\css\settings.css svchost.exe File opened for modification C:\program files\7-zip\lang\ku-ckb.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bg-desk.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\mstag.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.core_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\1.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\picturepuzzle.js svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\16to9squareframe_selectionsubpicture.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_top_left.png svchost.exe File created C:\program files (x86)\microsoft analysis services\as oledb\10\resources\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_left.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\cmm\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\management\management.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\accra svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring.xml svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\email_all.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\title_content-background.png svchost.exe File opened for modification C:\program files\registerprotect.xlsb svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\4.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-over-dot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\mahe svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\majuro svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidasansregular.ttf svchost.exe File opened for modification C:\program files\protectimport.bmp svchost.exe File opened for modification C:\program files\videolan\vlc\locale\my\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\7-zip\lang\fi.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\4to3squareframe_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-awt_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\zipfs.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\davis svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\forms_super.gif svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\nb.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\pl-pl\tipresx.dll.mui svchost.exe File opened for modification C:\program files\internet explorer\en-us\diagnosticstap.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-core.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\currency.js svchost.exe File opened for modification C:\program files\7-zip\lang\ru.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\management\jmxremote.access svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\oral svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\drag.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\roman.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text_3.9.1.v20140827-1810.jar svchost.exe File created C:\program files\windows sidebar\gadgets\currency.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\currency.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider_left.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\next_rest.png svchost.exe File created C:\program files\common files\microsoft shared\translat\enes\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\system\ole db\en-us\sqlxmlx.rll.mui svchost.exe File created C:\program files\common files\system\ole db\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-new.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_thunderstorm.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\css\weather.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\norfolk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\about.html svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_75_ffe45c_1x100.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dial_lrg_sml.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1257.txt svchost.exe File created C:\program files\common files\microsoft shared\help\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\radial\radial.inf svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_movedrop32x32.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\setup files\{ac76ba86-7ad7-1033-7b44-a90000000001}\setup.ini svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\emptydatabase.zip svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\creston svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\lindeman svchost.exe File created C:\program files (x86)\common files\system\msadc\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ripple\ripple.inf svchost.exe File opened for modification C:\program files\dvd maker\soniccolorconverter.ax svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\cordoba svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\ulaanbaatar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\39.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\bissau svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\http.luac svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\edge\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\content-foreground.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-settings_zh_cn.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\layers.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\js\jquery.jstree.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\19.png svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmplayer.exe.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_es.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\martinique svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\santiago svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\vdk10.cmp svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\saslprep\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\scene_loop.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationup_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-explorer.jar svchost.exe File opened for modification C:\program files\msbuild\microsoft\windows workflow foundation\v3.5\workflow.visualbasic.targets svchost.exe File created C:\program files\videolan\vlc\locale\lg\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\microsoft analysis services\as oledb\10\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_es.properties svchost.exe File created C:\program files\videolan\vlc\locale\pa\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-last-quarter_partly-cloudy.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\3082\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\chrome\application\setupmetrics\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\high-contrast.css svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\buttonup_off.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\gadget.xml svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\office32.ww\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\mozilla firefox\browser\features\[email protected] svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\search_background.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\adobepistd.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider.png svchost.exe File opened for modification C:\program files\7-zip\lang\id.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\whitehorse svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-masterfs-nio2.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\pohnpei svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_double_bkg.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)greenstateicon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\small_news.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\softblue.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sumipntg\sumipntg.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-sampler.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\css\slideshow.css svchost.exe File opened for modification C:\program files (x86)\windows photo viewer\en-us\photoviewer.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\flickanimation.avi svchost.exe File opened for modification C:\program files\java\jre7\lib\flavormap.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-1 svchost.exe File created C:\program files\videolan\vlc\locale\sr\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\add_down.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\icons\pdxfile_8.ico svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\icu\icudt26l.dat svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\css\rssfeeds.css svchost.exe File created C:\program files\common files\microsoft shared\ink\es-es\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsdeu.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\rmnsque\rmnsque.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\16_9-frame-background.png svchost.exe File opened for modification C:\program files\videolan\vlc\lua\meta\art\03_lastfm.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\js\cpu.js svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\adovbs.inc svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\4.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+11 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\grand_turk svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\twitch.luac svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\15x15dot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\berlin svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.text.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ar\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\8.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\16-on-black.gif svchost.exe File opened for modification C:\program files\7-zip\7z.sfx svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passportmask_pal.wmv svchost.exe File opened for modification C:\program files\mozilla firefox\uninstall\shortcuts_log.ini svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\vdk10.syx svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\boxed-join.avi svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\psychedelic.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\cascade\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\concrete\concrete.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\203x8subpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\madeira svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextservicedayi.txt svchost.exe File created C:\program files\windows sidebar\gadgets\mediacenter.gadget\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_bottom.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands_3.6.100.v20140528-1422.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\novokuznetsk svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bnext-down.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\rss_headline_glow_flyout.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\deepblue\deepblue.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-heapwalker_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\plugins\d3d9\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\handler.reg svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\pause_hov.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsrom.xml svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\shatter\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\videowall\203x8subpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-annotations-common.xml svchost.exe File created C:\program files\videolan\vlc\locale\ko\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\th\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-new_partly-cloudy.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmainbackground.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\flower_trans_matte_pal.wmv svchost.exe File created C:\program files\java\jre7\lib\fonts\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\pdfsigqformalrep.pdf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\add_down.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sky\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\saipan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64_3.103.1.v20140903-1947.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-actions.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\buttonup_on.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_blue_sun.png svchost.exe File created C:\program files (x86)\windows media player\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\graystateicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\cmm\srgb.pf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-full_partly-cloudy.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\ink\1.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\resourceinternal.zip svchost.exe File opened for modification C:\program files\7-zip\lang\bg.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\bear_formatted_rgb6_pal.wmv svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\bin\plugin2\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\setting_back.png svchost.exe File created C:\program files\common files\microsoft shared\translat\fren\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_ja.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-crescent.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationleft_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\authors.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\default_thumb.jpg svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\jpegim32.flt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\dubai svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\asl-v20.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\fur\lc_messages\vlc.mo svchost.exe File created C:\program files\windows sidebar\gadgets\mediacenter.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_top_right.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\flyout.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\base-docked.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\mawson svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-lib-profiler.jar svchost.exe File opened for modification C:\program files\newsync.rar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_divider.png svchost.exe File opened for modification C:\program files (x86)\windows media player\skins\revert.wmz svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\choibalsan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_ja.jar svchost.exe File created C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\prev_hov.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proof.en\proof.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\baghdad svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\wet svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\epsimp32.flt svchost.exe File created C:\program files\common files\microsoft shared\ink\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\spring\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ql.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\security\java.security svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\majuro svchost.exe File opened for modification C:\program files\resumeblock.crw svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\daisies.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\classfile_constants.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\darwin svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.filesystem_1.4.100.v20140514-1614.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_close_down_bidi.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bnext.png svchost.exe File created C:\program files\common files\microsoft shared\ink\et-ee\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\enes\msb1enes.its svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\baku svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-text.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\14.png svchost.exe File opened for modification C:\program files\mozilla firefox\browser\crashreporter-override.ini svchost.exe File created C:\program files\videolan\vlc\locale\ast\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\fy\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+1 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\kentucky\monticello svchost.exe File opened for modification C:\program files\videolan\vlc\locale\sv\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\dialogs\create_stream.html svchost.exe File created C:\program files\windows journal\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\notconnectedstateicon.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\videowall\videowall.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\artifacts.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_zh_cn.jar svchost.exe File created C:\program files\java\jre7\lib\zi\indian\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\usa03.ths svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer_s.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\blackrectangle.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\about.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\mobile.html svchost.exe File opened for modification C:\program files\videolan\vlc\lua\modules\common.luac svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\outlook.en-us\outlookmui.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\lightbluerectangle.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore.change_2.10.0.v20140901-1043.jar svchost.exe File created C:\program files\videolan\vlc\locale\nn\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\wallis svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\css\weather.css svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\jsdbgui.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\ink\fr-fr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsptg.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\radial\preview.gif svchost.exe File created C:\program files\videolan\vlc\hrtfs\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\excel.en-us\setup.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\publisher.en-us\publishermui.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_ja_jp.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\hobart svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\cst6cdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml svchost.exe File created C:\program files\videolan\vlc\locale\ja\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-full.png svchost.exe File created C:\program files\common files\microsoft shared\ink\el-gr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circle_glass_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\adak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\la_rioja svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.zh_cn_5.5.0.165303.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\evrgreen\evrgreen.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-9 svchost.exe File opened for modification C:\program files\mozilla firefox\firefox.exe.sig svchost.exe File created C:\program files\videolan\vlc\locale\lv\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\system_dot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\drag.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\brt.hyp svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\sl-si\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-plaf_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\internet explorer\signup\install.ins svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_zh_tw.properties svchost.exe File created C:\program files\videolan\vlc\locale\ta\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\25.png svchost.exe File opened for modification C:\program files\7-zip\lang\tr.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hr-hr\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files\videolan\vlc\skins\skin.catalog svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\en-us\msdaprsr.dll.mui svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\appconfiginternal.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_windy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\meta-index svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_mac.css svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\manila svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_down.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_frame-imagemask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.views_3.7.0.v20140408-0703.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\bin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\jayapura svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\eet svchost.exe File created C:\program files\videolan\vlc\locale\ar\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty_m.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\18.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\cryptocme2.sig svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\logo.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\est5edt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\tunis svchost.exe File opened for modification C:\program files\videolan\vlc\lua\meta\art\01_googleimage.luac svchost.exe File opened for modification C:\program files\7-zip\lang\ta.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\pictim32.flt svchost.exe File created C:\program files\common files\microsoft shared\ink\ro-ro\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxpolive.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_cloudy.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_foggy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\white_chocolate.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\jawt.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-10 svchost.exe File opened for modification C:\program files\java\jre7\lib\javaws.jar svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextservicesimplifiedquanpin.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setnetworkclientcp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\vienna svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jmx_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\dawson_creek svchost.exe File created C:\program files\videolan\vlc\locale\tr\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\br.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\ar-sa\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\belgrade svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\chrome_100_percent.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\delete_up.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\kentucky\monticello svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench_1.2.1.v20140901-1244.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_de.properties svchost.exe File opened for modification C:\program files\videolan\vlc\hrtfs\dodeca_and_7channel_3dsl_hrtf.sofa svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\chrome.exe.sig svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\combo-hover-left.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\cp1254.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\copyright svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jce.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\tashkent svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-output2_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\singapore svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\browse.json svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\dial_sml.png svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.csd svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_up.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vbcn6.chm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\navigationbuttonsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jfxrt.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\psfontj2d.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-9 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.service.exsd svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\month_calendar.emf svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\capsules\capsules.elm svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\indiana\marengo svchost.exe File created C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\41.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\orange circles.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\sitka svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\onenote.en-us\setup.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\riyadh87 svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\vienna svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\bg_sidebar.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\prague svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggeractions.exsd svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\3.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_bottom_left.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.bidi_0.10.0.v20130327-1442.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.registry_3.5.400.v20140428-1507.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help_3.6.0.v20130326-1254.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\prc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\7zcon.sfx svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsnor.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\pt-pt\tipresx.dll.mui svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_star_empty.png svchost.exe File opened for modification C:\program files\dvd maker\en-us\dvdmaker.exe.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\jamaica svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\merida svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\combo-hover-middle.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1046\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proofing.en-us\setup.xml svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\babyboy\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\santo_domingo svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\makassar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\cronometer_s.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\satin\satin.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsscenesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\amsterdam svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.commands_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\stanley svchost.exe File opened for modification C:\program files\reference assemblies\microsoft\framework\v3.5\redistlist\frameworklist.xml svchost.exe File opened for modification C:\program files\videolan\vlc\documentation.url svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\zh-changjei.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\symbols\ja-jp-sym.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\config.ini svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.command_0.10.0.v201209301215.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\dumontdurville svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\almaty svchost.exe File created C:\program files (x86)\common files\adobe air\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\axis\axis.inf svchost.exe File created C:\program files\common files\microsoft shared\web folders\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\vistabg.png svchost.exe File opened for modification C:\program files\internet explorer\ie9props.propdesc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\security\trusted.libraries svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\security\javaws.policy svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-3 svchost.exe File opened for modification C:\program files\videolan\vlc\locale\cs\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\system.png svchost.exe File created C:\program files\common files\services\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_hu.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\nassau svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\pause_hov.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\msinfo\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\arctic\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\bangkok svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-utilities.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circle_videoinset.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_image-frame-border.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\guyana svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\new-trigger-wiz.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\flicklearningwizard.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-javahelp_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidatypewriterbold.ttf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\flyoutback.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_frame-border.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\north_dakota\beulah svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\funafuti svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerevaluators.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\he\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\mk\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\triangle.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\ukraine.txt svchost.exe File opened for modification C:\program files\closeconvertto.m2v svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\activity16v.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\spplugins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\16.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-gibbous.png svchost.exe File created C:\program files\reference assemblies\microsoft\framework\v3.0\redistlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\corner.png svchost.exe File created C:\program files\7-zip\lang\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\whitemenu.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialnavigationup_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.p2.ui.overridden_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\resources\1033\msmdsrv.rll svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color48.bmp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\js\localizedstrings.js svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.eps svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\metlakatla svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\miquelon svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-awt.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_trans_scene_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\6.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\1033\ado210.chm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\js\library.js svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\hls.api svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\calendar.html svchost.exe File opened for modification C:\program files\exitblock.mpp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\tallinn svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\ia32.api svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialmainsubpicture.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\montevideo svchost.exe File created C:\program files (x86)\microsoft.net\redistlist\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\contbig.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\currency.data svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\css\localizedsettings.css svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\cgmimp32.flt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-compat_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+2 svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_rainy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\johannesburg svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\34.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sonora\sonora.inf svchost.exe File created C:\program files\common files\system\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\santiago svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\mozilla firefox\browser\visualelements\visualelements_150.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_corner_top_right.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\office14\cultures\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_top_right.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\studio\thmbnail.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\logging.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\glace_bay svchost.exe File opened for modification C:\program files (x86)\mozilla maintenance service\updater.ini svchost.exe File created C:\program files\common files\microsoft shared\ink\nl-nl\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\enu\acro20.lng svchost.exe File created C:\program files (x86)\common files\microsoft shared\ink\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\importgrant.mpg svchost.exe File opened for modification C:\program files\java\jre7\lib\jfxrt.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_ring_docked.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\drvdx9.x3d svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower_s.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\reveal_down.png svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.5\subsetlist\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\axis\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggeractionexceptionhandlers.exsd svchost.exe File opened for modification C:\program files\java\jre7\lib\amd64\jvm.cfg svchost.exe File created C:\program files\windows nt\accessories\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\month.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\css\cpu.css svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\5.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_foggy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\basealtgr_rtl.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\cayenne svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\vevay svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\argentina\mendoza svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\info.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\trash.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\flower_h.png svchost.exe File opened for modification C:\program files\dvd maker\bod_r.ttf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\eirunepe svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\bahia svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\canyon\canyon.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\damascus svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\br.gif svchost.exe File created C:\program files (x86)\common files\microsoft shared\stationery\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-last-quarter.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-crescent.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\blends\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\vignettemask25.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\mc.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ckb\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\locale\pt_pt\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\gadget_main_background_loading.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\boot_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_ja.jar svchost.exe File created C:\program files\videolan\vlc\locale\ne\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_foggy.png svchost.exe File opened for modification C:\program files\7-zip\lang\ka.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\security\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower_s.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\27.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-new.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\ja-jp.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\indiana\petersburg svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticattribute.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\org-openide-util-lookup.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\hong_kong svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_disabled.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_blue_partly-cloudy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\auxpad.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\eclipse_update_120.jpg svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\chuuk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\drag.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\setembeddedcp.bat svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\campo_grande svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_up.png svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.tts svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\connectionmanager_dmr.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fi-fi\tipresx.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\ink\uk-ua\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\textconv\wpft632.cnv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\chapters-static.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\notes_loop_bg_pal.wmv svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsnotesbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\3rdparty svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\etc\visualvm.clusters svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\currie svchost.exe File created C:\program files\videolan\vlc\plugins\spu\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\win\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\base-undocked-3.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\buttonup_on.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\bin\server\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.rcp_4.3.100.v20141007-2301.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ice\ice.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\cairo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\annotations\stamps\enu\standardbusiness.pdf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\titlebuttonicon.png svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\splash.gif svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\redstateicon.png svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\spacer_highlights.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\micaut.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\notebook.jpg svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\gibraltar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_down.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\play_down.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\makeaccessible.api svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\flash.mpp svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\assemblyinfointernal.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\garden.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\salta svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_ja.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_up.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-last-quarter.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\minionpro-it.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\pause_down.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\35.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\btn_search_up_bidi.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\fakaofo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\be\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows defender\en-us\mpasdesc.dll.mui svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\email_initiator.gif svchost.exe File opened for modification C:\program files (x86)\windows defender\en-us\mpevmsg.dll.mui svchost.exe File opened for modification C:\program files\7-zip\lang\th.txt svchost.exe File created C:\program files\common files\system\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\notes_content-background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-services.jar svchost.exe File opened for modification C:\program files (x86)\common files\services\verisign.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\charsets.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\belem svchost.exe File opened for modification C:\program files\java\jre7\welcome.html svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.wih svchost.exe File created C:\program files (x86)\google\chrome\application\dictionaries\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_pt_br.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar svchost.exe File created C:\program files\windows media player\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\media renderer\dmr_120.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\reflow.api svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\usa.fca svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\sw.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\mactsframe.png svchost.exe File opened for modification C:\program files\unblockconvertto.m4v svchost.exe File opened for modification C:\program files\videolan\vlc\locale\en_gb\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\7.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\en-us\sidebar.exe.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\vbendf98.chm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\heart_glass_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\platform.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\mozilla firefox\accessible.tlb svchost.exe File created C:\program files\msbuild\microsoft\windows workflow foundation\v3.5\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\bg\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ky\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\43.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\dotsdarkoverlay.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_pl.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\custom.lua svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\hint_over.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\pangnirtung svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\lisbon svchost.exe File opened for modification C:\program files\java\jre7\lib\net.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\qyzylorda svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\minionpro-boldit.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-new_partly-cloudy.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\16_9-frame-highlight.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\can.fca svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\pt-br.pak svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\next_hov.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\msinfo\en-us\msinfo32.exe.mui svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.crt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\smalllogo.png svchost.exe File opened for modification C:\program files (x86)\windows nt\tabletextservice\tabletextserviceamharic.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\en-us\settings.html svchost.exe File created C:\program files\common files\microsoft shared\ink\fsdefinitions\web\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\play-static.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\tzmappings svchost.exe File opened for modification C:\program files\videolan\vlc\videolan website.url svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\icon.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ru.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\singapore svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\resources.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\settings.html svchost.exe File created C:\program files\common files\microsoft shared\ink\sl-si\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\ceuta svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-3 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt_3.103.1.v20140903-1938.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\lagos svchost.exe File opened for modification C:\program files\videolan\vlc\locale\sr\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-dialogs.jar svchost.exe File created C:\program files\java\jre7\lib\jfr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\mst7 svchost.exe File created C:\program files\videolan\vlc\locale\pt_pt\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_double_bkg.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\drag.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\antigua svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+7 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\feature.properties svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\greenstateicon.png svchost.exe File created C:\program files (x86)\windows defender\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\navigationup_selectionsubpicture.png svchost.exe File opened for modification C:\program files\videolan\vlc\locale\cgg\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\8.0\microsoft.visualstudio.tools.applications.blueprints.tlb svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\msb1ar.lex svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\helsinki svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\installer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\emptydatabase.zip svchost.exe File opened for modification C:\program files\7-zip\lang\ko.txt svchost.exe File opened for modification C:\program files\clearexit.vdx svchost.exe File opened for modification C:\program files (x86)\common files\adobe air\sentinel svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrusalm.dat svchost.exe File created C:\program files\java\jre7\lib\zi\america\north_dakota\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proofing.en-us\proofing.xml svchost.exe File opened for modification C:\program files\internet explorer\en-us\ieinstal.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\nassau svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\com.jrockit.mc.console.ui.notification_contexts.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\invalid32x32.gif svchost.exe File created C:\program files\java\jre7\lib\zi\australia\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\chrome_200_percent.pak svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\widevinecdm\_platform_specific\win_x64\widevinecdm.dll.sig svchost.exe File opened for modification C:\program files\7-zip\lang\ext.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\accessibility.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\jerusalem svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\kolkata svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ps\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\soundcloud.luac svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\da.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.historicaldata_5.5.0.165303.jar svchost.exe File created C:\program files\videolan\vlc\locale\az\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\22.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\memories_buttonclear.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_scrapbook_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\el_aaiun svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\christmas svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-swing-plaf.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_thunderstorm.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\navback.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\base_jpn.xml svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\meta-inf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\spelling.api svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\vintage.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\javaws.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\almaty svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-fallback_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_zh_cn.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\satin\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\memories\title_mainimage-mask.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\yellowknife svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-modules-queries.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\playlist.json svchost.exe File opened for modification C:\program files (x86)\internet explorer\en-us\diagnosticstap.dll.mui svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\en-us\js\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\vostok svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\square_dot.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\cave_drawings.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\slate\slate.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jfr\default.jfc svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\costa_rica svchost.exe File created C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\css\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\taipei svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\39.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\8.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\default_apps\docs.crx svchost.exe File opened for modification C:\program files (x86)\internet explorer\ie9props.propdesc svchost.exe File opened for modification C:\program files\7-zip\lang\mn.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\content-background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\scenesscroll.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\chihuahua svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad_s.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ar.pak svchost.exe File created C:\program files\common files\microsoft shared\themes14\blueprnt\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\edge\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\expeditn\expeditn.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_zh_cn.jar svchost.exe File created C:\program files\videolan\vlc\locale\cs\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\uz.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\athens svchost.exe File created C:\program files\videolan\vlc\locale\ro\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows media player\en-us\mpvis.dll.mui svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color48.jpg svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\6.png svchost.exe File created C:\program files (x86)\google\chrome\application\81.0.4044.129\visualelements\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\5.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyblue.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application-views_zh_cn.jar svchost.exe File opened for modification C:\program files\msbuild\microsoft\windows workflow foundation\v3.5\workflow.targets svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\studio\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\invalid32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\tripoli svchost.exe File created C:\program files\videolan\vlc\locale\km\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\romanian.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_right_rest.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\ojinaga svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\hobart svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\spplugins\admplugin.apl svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\courierstd-boldoblique.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office32.en-us\office32mui.xml svchost.exe File created C:\program files\common files\microsoft shared\vc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_performance_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\yst9ydt svchost.exe File opened for modification C:\program files\videolan\vlc\skins\skin.dtd svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\en-us\settings.html svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\amt\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_zh_hk.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\security\javafx.policy svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\new_york svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\engphon.env svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\bprev.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_single_bkg.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsfin.xml svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shadowonlyframe_videoinset.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jfr.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\brunei svchost.exe File opened for modification C:\program files\videolan\vlc\plugins\plugins.dat svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\regina svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\hovd svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\riyadh svchost.exe File created C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\grphflt\ms.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\osknumpad.xml svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ga\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\ended_review_or_form.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\spring\spring.elm svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\circlesubpicture.png svchost.exe File opened for modification C:\program files\internet explorer\images\bing.ico svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\zy______.pfb svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\add_over.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console_1.0.300.v20131113-1212.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-execution.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\tegucigalpa svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\js\service.js svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh001.htm svchost.exe File opened for modification C:\program files\java\jre7\bin\server\classes.jsa svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\stars.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationleft_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\boise svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\chicago svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.jarprocessor_1.0.300.v20131211-1531.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\cst6cdt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\split.avi svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\currency.data svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-nodes.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-options-api.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\vi\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\common files\microsoft shared\portal\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\play_rest.png svchost.exe File created C:\program files\common files\microsoft shared\proof\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\davis svchost.exe File opened for modification C:\program files\videolan\vlc\locale\or\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_bw120.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\modern.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad_h.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\fontconfig.properties.src svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\turnonnotificationinacrobat.gif svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\icon.png svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\office32.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\vladivostok svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.docs_5.5.0.165303.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\etc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\antigua svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png svchost.exe File opened for modification C:\program files (x86)\common files\speechengines\microsoft\tts20\en-us\enu-dsk\m1033dsk.apl svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\eclipse\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\colombo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\edmonton svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\adobe\symbol.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-api-search.xml svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\brt32.clx svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\es-419.pak svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\he-il\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-util-enumerations.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\meta\reader\filename.luac svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins3d\2d.x3d svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\class.zip svchost.exe File opened for modification C:\program files\7-zip\lang\es.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\sr-latn-cs\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\midway svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner_s.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked-loading.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\trad_s.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\es-es\tipresx.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\hwrlatinlm.dat svchost.exe File opened for modification C:\program files\common files\system\ado\msado26.tlb svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+4 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif svchost.exe File created C:\program files\common files\microsoft shared\officesoftwareprotectionplatform\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rarrow.gif svchost.exe File created C:\program files\videolan\vlc\plugins\stream_out\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\rssfeeds.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\legal\enu\license.html svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\quicktime.mpp svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_divider.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\layeredtitles\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\athens svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\ext\locale\updater_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\macau svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\shanghai svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\base-undocked-3.png svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.5\redistlist\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\specialoccasion\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\ky\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\msbuild\microsoft\windows workflow foundation\v3.5\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)alerticon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\edge\edge.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\galapagos svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\license.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-search.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\gaza svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\anevia_streams.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_close_up.png svchost.exe File created C:\program files (x86)\reference assemblies\microsoft\framework\v3.5\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\css\settings.css svchost.exe File created C:\program files\common files\microsoft shared\themes14\eclipse\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\playlist_jstree.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-crescent.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\ipsmigrationplugin.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\nauru svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\london svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\da\lc_messages\vlc.mo svchost.exe File created C:\program files\videolan\vlc\locale\hu\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\modules\simplexml.luac svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\daisies.png svchost.exe File opened for modification C:\program files\common files\services\verisign.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\recife svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+2 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-7 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\artifacts.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\dmr_120.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-openide-compat.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\anchorage svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\meta-index svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked-loading.png svchost.exe File created C:\program files (x86)\internet explorer\signup\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\push\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\navigationleft_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\specialoccasion\specialoccasion.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-11 svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidabrightregular.ttf svchost.exe File created C:\program files\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_box_divider_right.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_left_disabled.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\glass_lrg.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_gray_snow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\watermar\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.felix.gogo.runtime_0.10.0.v201209301036.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\org-netbeans-modules-profiler.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\readoutloud.api svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\zx______.pfb svchost.exe File opened for modification C:\program files (x86)\windows nt\accessories\en-us\wordpad.exe.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\timer_over.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\24.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\yst9ydt svchost.exe File created C:\program files\videolan\vlc\plugins\keystore\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\settings_right_pressed.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\edge\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\jconsole.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\thirdpartylicensereadme-javafx.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\meipreload\manifest.json svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_divider_left.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_snow.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\pss10o.chm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\australia\adelaide svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\gambier svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt-11 svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_double.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\access-bridge-64.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\tbilisi svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\lua\http\css\ui-lightness\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\calendar.gadget\images\calendar_single_bkg_orange.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_trans_scene.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\send-email-16.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-threaddump_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\security\cacerts svchost.exe File created C:\program files\microsoft analysis services\as oledb\10\resources\1033\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\an\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\intf\cli.luac svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.sun.el_2.2.0.v201303151357.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.update.configurator.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\drag.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\jamaica svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.di.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\resources\1033\msolui100.rll svchost.exe File opened for modification C:\program files\videolan\vlc\locale\wa\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\gadget.xml svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\settingsinternal.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\7.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\vignette\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-explorer_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_divider_left.png svchost.exe File opened for modification C:\program files (x86)\common files\adobe\updater6\adobeupdater.cer svchost.exe File opened for modification C:\program files\common files\system\msadc\handler.reg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-back-static.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\dushanbe svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\menu_style_default_thumbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)notconnectedstateicon.png svchost.exe File opened for modification C:\program files\internet explorer\en-us\iexplore.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\strtedge\strtedge.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_photo_thumbnail.bmp svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\mozilla firefox\browser\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\submission_history.gif svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\eng.hyp svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\fr.pak svchost.exe File created C:\program files (x86)\google\update\download\{8a69d345-d564-463c-aff1-a69d9e530f96}\81.0.4044.129\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\novelty_settings.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\uct svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ricepapr\ricepapr.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.syntheticnotification.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-api_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\yekaterinburg svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ru\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\mobile_browse.html svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\2.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\rollinghills.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derby.war svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\est svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\orangecircles.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\nb-no\tipresx.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar svchost.exe File created C:\program files\videolan\vlc\lua\intf\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\fil.pak svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\network\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\uz\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_left_disabled.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\photoedge_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\jfr\profile.jfc svchost.exe File created C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_close_over.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\26.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\da-dk\tipresx.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\navigationright_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileregistry\jmc.profile\1423861240389.profile.gz svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-settings.xml svchost.exe File created C:\program files (x86)\common files\adobe air\versions\1.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\aboutbox.zip svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationright_buttongraphic.png svchost.exe File created C:\program files\videolan\vlc\locale\am\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_ja.properties svchost.exe File created C:\program files\videolan\vlc\plugins\access\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\en-us\oledb32r.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_divider_left.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\ricepapr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\campo_grande svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\0.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\can129.hsp svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\loginform.zip svchost.exe File created C:\program files (x86)\windows sidebar\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_sv.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\puerto_rico svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\en-us\currency.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-crescent.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acrosign.prc svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\47.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\play_hov.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\42.png svchost.exe File opened for modification C:\program files\7-zip\lang\io.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\cursors.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets_1.0.0.v20140514-1823.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_ja.jar svchost.exe File created C:\program files\java\jre7\bin\dtplugin\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\videolan\vlc\locale\sq\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\images\button_mcelogo_mousedown.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\rssfeeds.html svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\icu\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_foggy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\content-types.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_blu.css svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\configuration\org.eclipse.update\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\karachi svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\flyout.html svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\8.0\microsoft.visualstudio.tools.applications.designtime.tlb svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\dictionaries\en-us-9-0.bdic svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\en-us\picturepuzzle.html svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\weather.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\scenes_intro_bg_pal.wmv svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\chita svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\minionpro-regular.otf svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\shuffle_down.png svchost.exe File opened for modification C:\program files\dvd maker\directshowtap.ax svchost.exe File opened for modification C:\program files\internet explorer\en-us\iedvtool.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\diner_dot.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_left.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\notes_loop_bg.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_ru.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\africa\tunis svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\palmer svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\dmr_120.png svchost.exe File created C:\program files\common files\microsoft shared\translat\esen\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\meta-inf\eclipse_.rsa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-sampler_ja.jar svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\help\namedurls.hxk svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_docked.png svchost.exe File created C:\program files\common files\microsoft shared\themes14\sonora\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\tijuana svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-io_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower_settings.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\10.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\en-us.pak svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\kn.pak svchost.exe File opened for modification C:\program files\7-zip\lang\fy.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\troll svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\tokyo svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\turnonnotificationintray.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\scenebuttoninset_alpha1.png svchost.exe File created C:\program files\videolan\vlc\locale\sl\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\tr.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_hail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\16to9squareframe_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\performance.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\passport_mask_left.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\management\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\chatham svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_copydrop32x32.gif svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\godthab svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\appconfig.zip svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\20.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\720x480blacksquare.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\rangoon svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-4 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.xml_1.3.4.v201005080400.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\belize svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\tegucigalpa svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\aqtau svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)graystateicon.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\button-bullet.png svchost.exe File opened for modification C:\program files\windows media player\en-us\wmpnscfg.exe.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\15x15dot.png svchost.exe File created C:\program files\dvd maker\shared\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+6 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.el_2.2.0.v201303151357.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\kosrae svchost.exe File created C:\program files (x86)\common files\microsoft shared\dao\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\graph_up.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\logo.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-core-io-ui.jar svchost.exe File opened for modification C:\program files\windows nt\tabletextservice\tabletextserviceyi.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\en-us\gadget.xml svchost.exe File created C:\program files\windows sidebar\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\bridge\accessbridgepackages.h svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\tijuana svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\rangoon svchost.exe File opened for modification C:\program files\videolan\vlc\locale\te\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\uk-ua\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbynet.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-print_zh_cn.jar svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color48.png svchost.exe File created C:\program files (x86)\common files\adobe\help\en_us\adobe reader\9.0\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\msadomd28.tlb svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\memories\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\toronto svchost.exe File opened for modification C:\program files\mozilla firefox\browser\omni.ja svchost.exe File created C:\program files\windows portable devices\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\system\msadc\en-us\msadcor.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\srednekolymsk svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\sql2000.xsl svchost.exe File opened for modification C:\program files\7-zip\lang\sr-spl.txt svchost.exe File created C:\program files\common files\microsoft shared\ink\ko-kr\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\handprints.jpg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\hst10 svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\bg-dock.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_bottom.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\srednekolymsk svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\stockholm svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\myriadpro-it.otf svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\en-us\sqloledb.rll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\icon.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_rainy.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\navigationup_buttongraphic.png svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\pets\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_linkdrop32x32.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\management-agent.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\dumontdurville svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\rmnsque\thmbnail.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\vba\vba7\1033\fm20.chm svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\eirunepe svchost.exe File opened for modification C:\program files\videolan\vlc\locale\mr\lc_messages\vlc.mo svchost.exe File created C:\program files (x86)\adobe\reader 9.0\resource\font\pfm\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\cronometer_m.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\resizingpanels\1047x576black.png svchost.exe File opened for modification C:\program files\dvd maker\sonicsptransform.ax svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\maldives svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\windows media player\media renderer\renderingcontrol.xml svchost.exe File opened for modification C:\program files\7-zip\lang\lij.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\button-highlight.png svchost.exe File created C:\program files\windows sidebar\gadgets\calendar.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_blue_windy.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\cs-cz\tipresx.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives_1.1.100.v20140523-0116.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\boxed-delete.avi svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboyscenesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\hprof-16.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.swt.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\cairo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\images\base-undocked-4.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\play-background.png svchost.exe File opened for modification C:\program files\internet explorer\timeline.cpu.xml svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\vdkhome\vdk10.thd svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsto\10.0\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\system\msmapi\1033\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\resizingpanels\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\feedback.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml svchost.exe File created C:\program files\java\jre7\bin\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\locale\gl\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\btn_search_up_bidi.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\setup files\{ac76ba86-7ad7-1033-7b44-a90000000001}\abcpy.ini svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.attach_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\38.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\7.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\zh-phonetic.xml svchost.exe File created C:\program files\common files\microsoft shared\ink\zh-tw\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\satin\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\brunei svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\gibraltar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\indian\mauritius svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-modules-uihandler.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern_m.png svchost.exe File opened for modification C:\program files\closeselect.ps1 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_zh_cn.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\croatian.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbylocale_zh_tw.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files (x86)\common files\system\ole db\en-us\msdasqlr.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\43.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\zipfs.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.commands_0.10.2.v20140424-2344.jar svchost.exe File created C:\program files\dvd maker\shared\dvdstyles\travel\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\accra svchost.exe File opened for modification C:\program files\videolan\vlc\locale\lt\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\sy______.pfb svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\45.png svchost.exe File created C:\program files (x86)\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\7-zip\lang\zh-cn.txt svchost.exe File created C:\program files\common files\microsoft shared\smart tag\lists\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\cape_verde svchost.exe File opened for modification C:\program files\mozilla firefox\defaults\pref\channel-prefs.js svchost.exe File created C:\program files\common files\system\ado\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\management\jmxremote.access svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml svchost.exe File created C:\program files\videolan\vlc\plugins\stream_extractor\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\pmd.cer svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waning-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\moscow svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.concurrent_1.1.0.v20130327-1442.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core_ja.jar svchost.exe File opened for modification C:\program files (x86)\common files\system\ado\adojavas.inc svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_hail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\jawt_md.h svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\cmm\ciexyz.pf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\antarctica\macquarie svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\magadan svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_gray_hail.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\pmp\datamatrix.pmp svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_postage_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\hst svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\en-us\cpu.html svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ru-ru\tipresx.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-next-over-select.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\sports\sportsmaintonotesbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+3 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\macgrey.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\monrovia svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\flippage\1047x576black.png svchost.exe File created C:\program files\windows mail\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_ja.jar svchost.exe File created C:\program files\mozilla firefox\uninstall\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.artifact.repository.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\choibalsan svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\10.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\ext\sunmscapi.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\appletrailers.luac svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\newgrounds.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower_dot.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\en-us\settings.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\magadan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_es.properties svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\etc\gmt+7 svchost.exe File created C:\program files\microsoft analysis services\as oledb\10\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\requests\vlm_cmd.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_few-showers.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_cloudy.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-first-quarter_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileregistry\jmc.profile\1423861258748.profile.gz svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\pt-pt.pak svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\atlantic\stanley svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\systemv\mst7mdt svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\office.en-us\oct.chm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\concrete\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babygirl\bear_formatted_matte2.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\qatar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\languagenames2\displaylanguagenames.en_gb_euro.txt svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-crescent_partly-cloudy.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\bin\server\xusage.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_zh_cn.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad_settings.png svchost.exe File opened for modification C:\program files\7-zip\lang\hr.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\echo\preview.gif svchost.exe File opened for modification C:\program files\common files\microsoft shared\translat\fren\wt61fr.lex svchost.exe File created C:\program files\java\jdk1.7.0_80\db\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_ko.properties svchost.exe File opened for modification C:\program files\mozilla firefox\install.log svchost.exe File opened for modification C:\program files\videolan\vlc\locale\af\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\images\vlc-48.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsto\10.0\vstoinstaller.config svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\et.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\en-us\js\settings.js svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\clock.gadget\images\modern.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\dialdot_lrg.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.attributetransformation.exsd svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\cmm\linear_rgb.pf svchost.exe File created C:\program files\videolan\vlc\lua\http\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\en-us\css\clock.css svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\air\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\typesupport\unicode\mappings\mac\greek.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsta\appinfodocument\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\images\cursors\win32_movenodrop32x32.gif svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\vlm_export.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\32.png svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\explorer.zip svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\setup_wm.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\honolulu svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\oslo svchost.exe File created C:\program files\videolan\vlc\locale\gu\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_ja.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_box_top.png svchost.exe File created C:\program files\windows sidebar\gadgets\rssfeeds.gadget\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\informix.xsl svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_blue_snow.png svchost.exe File created C:\program files\common files\microsoft shared\ink\lt-lt\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\charsets.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\flower_h.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\en-us\js\picturepuzzle.js svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\logo.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\riyadh88 svchost.exe File created C:\program files\java\jre7\lib\zi\america\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\internet explorer\en-us\f12tools.dll.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\marquesas svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp_5.5.0.165303\feature.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\about.html svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.console.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\antarctica\syowa svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\tracker\server_ok.gif svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\sr.pak svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\buttondown_off.png svchost.exe File created C:\program files\common files\microsoft shared\ink\de-de\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangles\navigationup_selectionsubpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\microsoft analysis services\as oledb\10\cartridges\as80.xsl svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\capsules\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\title_trans_notes_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\bishkek svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\europe\vilnius svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\calendars.properties svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\preface.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\baku svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\amt\aumproduct.aup svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ko.pak svchost.exe File created C:\program files (x86)\windows media player\skins\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\delete_down.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ice\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\full\dotslightoverlay.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\anadyr svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\novosibirsk svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_few-showers.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_gray_snow.png svchost.exe File opened for modification C:\program files\closeoptimize.ex_ svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-api-annotations-common.jar svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\optional\readme.txt svchost.exe File created C:\program files (x86)\internet explorer\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\bin\networkservercontrol.bat svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\pyongyang svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.net_1.2.200.v20140124-2013.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\mediacenter.gadget\css\main.css svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\vladivostok svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\atlantic\bermuda svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\144dpi\(144dpi)greenstateicon.png svchost.exe File created C:\program files\common files\microsoft shared\ink\da-dk\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\common files\microsoft shared\themes14\watermar\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\vancouver svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml svchost.exe File opened for modification C:\program files\switchreceive.jpg svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymaintoscenesbackground_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\cmm\pycc.pf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\cambridge_bay svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxpbluhandle.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_ja.jar svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\ipsplk.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.directorywatcher.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util_zh_cn.jar svchost.exe File created C:\program files\java\jre7\lib\management\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\journal\thmbnail.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\nav_leftarrow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\db\lib\derbyclient.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm svchost.exe File opened for modification C:\program files\java\jre7\bin\server\xusage.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-openide-dialogs_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\cancun svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-gibbous.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\23.png svchost.exe File created C:\program files\common files\microsoft shared\office14\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\meta-inf\manifest.mf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winxphandle.png svchost.exe File created C:\program files\windows nt\tabletextservice\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows media player\en-us\wmpdmccore.dll.mui svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\en-us\css\currency.css svchost.exe File created C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\argentina\san_juan svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.addons.swt.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-remote_ja.jar svchost.exe File opened for modification C:\program files\windows media player\network sharing\wmpnss_color120.jpg svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\tipresx.dll.mui svchost.exe File created C:\program files\common files\microsoft shared\vba\vba7\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\net.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_cn_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\mozilla firefox\browser\visualelements\visualelements_70.png svchost.exe File created C:\program files\videolan\vlc\lua\http\requests\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\sumipntg\preview.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\203x8subpicture.png svchost.exe File created C:\program files\java\jdk1.7.0_80\include\win32\bridge\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\org-netbeans-swing-plaf.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_ja.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml svchost.exe File opened for modification C:\program files\windows media player\media renderer\dmr_120.jpg svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\powerpoint.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\dvdtransform.fx svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\oldage\navigationright_selectionsubpicture.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\photoedge_videoinset.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\15x15dot.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-io.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\fonts\lucidasansdemibold.ttf svchost.exe File opened for modification C:\program files\reference assemblies\microsoft\framework\v3.0\redistlist\frameworklist.xml svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\mip.exe.mui svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\guatemala svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\thimphu svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\th.pak svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\greenstateicon.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\parentmenubuttoniconsubpict.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\cst6 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.emf.ecore_2.10.1.v20140901-1043.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar svchost.exe File opened for modification C:\program files\dvd maker\fieldswitch.ax svchost.exe File created C:\program files\java\jre7\bin\plugin2\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\videolan\vlc\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_corner_bottom_right.png svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\kentucky\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multitabs.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\nn\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\videolan\vlc\lua\playlist\vocaroo.luac svchost.exe File created C:\program files (x86)\common files\microsoft shared\vsto\10.0\1033\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft analysis services\as oledb\10\cartridges\sql70.xsl svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\logo.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\canyon\preview.gif svchost.exe File opened for modification C:\program files\exitstep.css svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_zh_cn.jar svchost.exe File opened for modification C:\program files\videolan\vlc\lua\sd\jamendo.luac svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\images\buttondown_on.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\undocked_gray_snow.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_cn_5.5.0.165303\feature.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.core.nl_ja_4.4.0.v20140623020002.jar svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waning-crescent.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\spring\spring.inf svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\heart_selectionsubpicture.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder_5.5.0.165303.jar svchost.exe File created C:\program files\videolan\vlc\!!FAQ for Decryption!!.txt svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1031\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\circle_buttongraphic.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\performance\notes_loop_pal.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.launcher_1.3.0.v20140415-2008.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state_1.0.1.v20140709-1414.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\pangnirtung svchost.exe File opened for modification C:\program files\common files\speechengines\microsoft\tts20\en-us\msttsloc.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\postage_buttongraphic.png svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\access-bridge-64.jar svchost.exe File opened for modification C:\program files\registerconvert.wav svchost.exe File opened for modification C:\program files\windows journal\en-us\jnwdui.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\indust\thmbnail.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\settings_left_pressed.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\slideshow.gadget\images\in_sidebar\slideshow_glass_frame.png svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\word.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jre7\lib\deploy\messages_zh_cn.properties svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\ml.pak svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\babyboy\babyboymaintoscenesbackground.wmv svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\jfr\profile.jfc svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\dsn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\rio_branco svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\australia\perth svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\currency.gadget\logo.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\linguistics\providers\proximity\11.00\brt55.ths svchost.exe File opened for modification C:\program files\common files\microsoft shared\smart tag\1033\mcabout.htm svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\evrgreen\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\classlist svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\updater.api svchost.exe File opened for modification C:\program files\7-zip\lang\ga.txt svchost.exe File opened for modification C:\program files\compareconfirm.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.http.jetty_3.0.200.v20131021-1843.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\africa\nairobi svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\trad.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\reader\amt\aumproduct.cer svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\include\win32\jni_md.h svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\softblue.jpg svchost.exe File opened for modification C:\program files (x86)\common files\system\msadc\handsafe.reg svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\ripple\ripple.elm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\update_tracking\org-openide-filesystems.xml svchost.exe File created C:\program files\common files\microsoft shared\ink\th-th\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\tiki.gif svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\huecycle\colorcycle.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\shatter\shatter.png svchost.exe File created C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\javax.servlet.jsp_2.2.0.v201112011158.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\images\cursors\win32_linknodrop32x32.gif svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\en-us\weather.html svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\120dpi\(120dpi)notconnectedstateicon.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\slate\thmbnail.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\cpu.gadget\images\glass.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\docked_black_moon-waxing-gibbous_partly-cloudy.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_blue_snow.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsta\8.0\x86\vsta_ep32.exe.config svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\pacific\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\currency.gadget\images\graph_over.png svchost.exe File opened for modification C:\program files\7-zip\descript.ion svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\stacking\1047x576black.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\sakhalin svchost.exe File opened for modification C:\program files\java\jre7\lib\ext\dnsns.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\kn\lc_messages\vlc.mo svchost.exe File created C:\program files\windows sidebar\en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\slideshow.gadget\images\next_down.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\travel\16_9-frame-background.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-modules-appui_ja.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\lima svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\asia\ashgabat svchost.exe File created C:\program files\videolan\vlc\locale\nl\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\rings-desk.png svchost.exe File opened for modification C:\program files (x86)\adobe\reader 9.0\resource\font\myriadpro-boldit.otf svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\pl.pak svchost.exe File created C:\program files\common files\microsoft shared\office14\office setup controller\access.en-us\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\asia\amman svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt-13 svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\clock.gadget\images\novelty_s.png svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\idtemplates\enu\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\visualbasic\1033\dialog.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\breeze\thmbnail.png svchost.exe File created C:\program files\internet explorer\images\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\multimedia\mpp\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\dvd maker\en-us\omdproject.dll.mui svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\layeredtitles\navigationleft_buttongraphic.png svchost.exe File created C:\program files\windows sidebar\gadgets\currency.gadget\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\vsto\vstoee100.tlb svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\rssfeeds.gadget\images\item_hover_floating.png svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\redstateicon.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.ja_5.5.0.165303.jar svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-api.xml svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\rssfeeds.gadget\drag.png svchost.exe File created C:\program files (x86)\common files\microsoft shared\help\1041\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\picturepuzzle.gadget\images\settings_box_divider_right.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\fsdefinitions\main\ko-kr.xml svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\classlist svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiling.xml svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\montreal svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\proplus\proplusww.xml svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\grid_(cm).wmf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\america\winnipeg svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\java\jre7\release svchost.exe File created C:\program files (x86)\adobe\reader 9.0\reader\plug_ins\acroform\pmp\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\weather.gadget\images\10.png svchost.exe File opened for modification C:\program files\7-zip\lang\da.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\ink\en-us\ipseventlogmsg.dll.mui svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\boldstri\preview.gif svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\etc\gmt+8 svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_ja.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\an\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\weather.gadget\images\undocked_black_moon-waxing-gibbous.png svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\pets\pets_btn-previous-over-select.png svchost.exe File opened for modification C:\program files\videolan\vlc\locale\bs\lc_messages\vlc.mo svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\ink\en-us\tipband.dll.mui svchost.exe File opened for modification C:\program files (x86)\google\chrome\application\81.0.4044.129\locales\sl.pak svchost.exe File opened for modification C:\program files\7-zip\lang\be.txt svchost.exe File created C:\program files\java\jdk1.7.0_80\jre\lib\fonts\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\flight_recorder.png svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\europe\kiev svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\kiritimati svchost.exe File opened for modification C:\program files (x86)\windows sidebar\gadgets\cpu.gadget\images\back_lrg.png svchost.exe File opened for modification C:\program files\common files\microsoft shared\stationery\memo.emf svchost.exe File created C:\program files\videolan\vlc\locale\mn\lc_messages\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files (x86)\microsoft visual studio 8\common7\ide\vsta\itemtemplates\csharp\1033\resource.zip svchost.exe File opened for modification C:\program files\common files\microsoft shared\office14\office setup controller\pkeyconfig-office.xrm-ms svchost.exe File opened for modification C:\program files\dvd maker\shared\dvdstyles\rectangle_travel_thumbnail.bmp svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\pst8pdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\zi\systemv\pst8pdt svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\meta-inf\eclipse_.sf svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\pacific\fiji svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\calendar.gadget\images\calendar_single_bkg.png svchost.exe File opened for modification C:\program files\windows sidebar\gadgets\picturepuzzle.gadget\images\tile_drop_shadow.png svchost.exe File opened for modification C:\program files (x86)\common files\microsoft shared\stationery\stars.htm svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\jre\lib\deploy\messages_zh_hk.properties svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\meta-inf\eclipse.inf svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_cn.jar svchost.exe File opened for modification C:\program files\java\jre7\lib\zi\america\port-au-prince svchost.exe File created C:\program files (x86)\microsoft.net\primary interop assemblies\!!FAQ for Decryption!!.txt svchost.exe File opened for modification C:\program files\common files\microsoft shared\themes14\water\thmbnail.png svchost.exe File opened for modification C:\program files\java\jdk1.7.0_80\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_zh_4.4.0.v20140623020002.jar svchost.exe File opened for modification C:\program files\videolan\vlc\locale\ug\lc_messages\vlc.mo svchost.exe -
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of WriteProcessMemory 10 IoCs
description pid Process procid_target PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 900 1056 00b2679e73e28343fd153df9858bc910.exe 24 PID 1056 wrote to memory of 1312 1056 00b2679e73e28343fd153df9858bc910.exe 25 PID 1056 wrote to memory of 1312 1056 00b2679e73e28343fd153df9858bc910.exe 25 PID 1056 wrote to memory of 1312 1056 00b2679e73e28343fd153df9858bc910.exe 25 PID 1056 wrote to memory of 1312 1056 00b2679e73e28343fd153df9858bc910.exe 25
Processes
-
C:\Users\Admin\AppData\Local\Temp\00b2679e73e28343fd153df9858bc910.exe"C:\Users\Admin\AppData\Local\Temp\00b2679e73e28343fd153df9858bc910.exe"1⤵
- Suspicious use of SetThreadContext
- Suspicious use of WriteProcessMemory
PID:1056 -
C:\Windows\SysWOW64\svchost.exeC:\Windows\System32\svchost.exe2⤵
- Suspicious behavior: EnumeratesProcesses
- Drops file in Program Files directory
PID:900
-
-
C:\Windows\SysWOW64\cmd.exe/c del C:\Users\Admin\AppData\Local\Temp\00b2679e73e28343fd153df9858bc910.exe >> NUL2⤵
- Deletes itself
PID:1312
-