b227fa04...0a17

Indicators

File (629)

Filename	Hash	Operations	Category	Severity
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\weeli.exe	MD5: 3beb3d466bcc0977ec2dd66d72ab6bb3 SHA1: e94089137a41fd95c790f88cc9b57c2b4d5625ba SHA256: b227fa0485e34511627a8a4a7d3f1abb6231517be62d022916273b7a51b80a17 SSDeep: 384:AXMTdRam+CzPnvvLjjXbee9hNBxNIIjNsJwaYmfWmoBMnCPpLvdm5+nIQV9O2gpT:AXzaBsDemFGjmOV9CULMma ImpHash: 35f7171c074e35f1274e48a67e3185dc		Sample File	Malicious
C:\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\ExcelMUI.xml	MD5: 5ef560fd8322cd2c99f12cf9b99a7402 SHA1: 3a12f5d13098a1c677edd38c6af97c92a0194a2b SHA256: 3fcc0dedb5ab23a39d5968dfe7c022b7c758e8b55d682915581ce51d55ef7005 SSDeep: 48:fX3X9EQ6pKZaJtamh/Zx7yJYveQWJoHNMc9XIwCUyNQF3eYe:fS5WaJtambx7yJcWaHtxH5yA3eYe ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 36dab1435e22965c6359c5f18bc4a693 SHA1: 0d8bf8aaee5bedd83d17f9a95e04365f35d19ef1 SHA256: 5f23d9553dead1a567ef234c6c6b5a39acdffd737ebcb5a0b4c959b7b9fa79a0 SSDeep: 48:dyiXNsGzPvh8ZSejuM8S5RaG2p7T6SZ0Cf1yq5DalKObD56ARgO:dyaPv8CM8STL47eUfMyDpMDJRgO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 16deda30d617f70f1fe6662562dd269c SHA1: 681675b678af6c04e036480227260516d7757a01 SHA256: 528c927e2203e4a998c727d4b975b49913308c7bb88f623981a33f7eceb1bb73 SSDeep: 48:qccBvSJBt2RL2xunLXxNd7Pykpn5J9XgtOK4FfCTbfP63+YkRl1k0g7Q:qBKrwnNNdz153wtOK4kTbHDR0U ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 637ccd64ff1b371cf1fe55b260c5ace2 SHA1: 7a9637f6a71c5d80de73a0d0dc41c32696c39b03 SHA256: 3da8a0a4d42ef2a7a3cc198f576492c0e74840c510a188a1c0264422e20097ad SSDeep: 24:Nkw54+ZwjwU615S/zMGM55WRlhyjMuSurg7XGqe5tICmqTWAVW6tzLrO8/5fm+AV:2+f1ezQahy4fyDtInOBlfmZ+Km2V ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: d519ce64750e1fab2a93aae1ec77b38d SHA1: c55db758be7b1edeeb4f3737388a94b555215542 SHA256: 1b80bde7f3a489e12ad9f8fb2640026e35d343b3de51be835315ff8e153f8f02 SSDeep: 96:uHgHN0P7y0mc5To20LNXLJYR8rlpy1Ju7aLiBXZ8SKRpgpkFB:uHkKPW0mcxo20LNCTtLiY9MiB ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 904abe6443880b4208d5ccc2c388ea82 SHA1: 74fd237ae258354c46e7ba8061f784d314ecc60d SHA256: 0274db079e1269227a0d631d25978d03604ec4ad52cd65a800f0c2e325c46197 SSDeep: 48:45MjHy8sXfTuGVm509Turl/8Ix5mFAUMScXgNVR7Mz3kczKGCdOkixs:4W7y8O+5096rliFRMScX+R7MbTjxs ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.es\Proof.xml	MD5: 88cd4eae3addb2b8254bc2dc9498be31 SHA1: ac4265e5de345c3ee9ab57091635fee8f1e1b222 SHA256: 2fa1a446ed793d7a5ca10c697e77a5bf1cfc44f8c725be0b0460a84873fdc02e SSDeep: 48:nGPjCTAz62yCtRP5Tye2DcdyB/5lQl1w8KnkXwIGvInq:GPjC0O2yCtRPhye2odyJ5lRkApvIq ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.fr\Proof.xml	MD5: 98c1a5477063408be46ed74ad53eb383 SHA1: aec9bb70b1276f2bb8c1306b3e9bfe654e733fce SHA256: cd885b1779f487989942179bc0c9a231449dfb3e8c74a95d57b280b9928d91ae SSDeep: 48:+Hp9ql2ax9GeUONXHdkj5+Zth8Z45nIjPwIa57JNekU1TU:+J9qNXX9kjI/h8OBIj4Jna1TU ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proofing.xml	MD5: 5722a11ef045645c45b8a6b00d42bbef SHA1: 7205575303f7fd9374985a14b0fd78f8b34d4439 SHA256: b75386536fa8ff2bb945a2014ff78f5ef18ff716bad170fef486a2677269190c SSDeep: 24:fmCZT1DuZyAN7zQtLESc7gdACJY4aVviEBu7kkllb65H8oYFV/3VsyLNhyilpGV:eCjuZ3pzg54YAZviRAk7McVV/R/yh ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0044-0409-1000-0000000FF1CE}-C\InfoPathMUI.xml	MD5: b59a100db1a53627eb73f21b59701c1c SHA1: 7767ee85f22154e98a1beefb6d8ee234461a7bd5 SHA256: a04ff96d17125371ae93af7f7e420d743ee06787e854f4999d6bc74290b3d9a0 SSDeep: 48:ABt4L7pPQcJzZtaV24KC+Eub5awvjJTns+yKcjz/ntRc:kt4Ll7JzA2dCWb5rNTP1cvnTc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0054-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: f06e520892985110aa8dcdec7a0eb8ac SHA1: 37a771df137d15e95bf33aa2963a68df05cead5b SHA256: af3b37e55590c9064092e9c3e77bb398f328ed3a3e2ee2617a2d864950f17865 SSDeep: 96:fDe4Qq7cSC49NG/B8745X+MlfLVRwoUohbY4RQqSQMyMFjMgDSExoAGSHVMuDz3Y:J+fx/BRoMlTVRhUoeGQfQRMF3+Kdo ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-00A1-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 3298e3a7f95e426e9766fe42742246f0 SHA1: 3ee8d33ce2b1ca634b6aedd5284a74b5fdf0984c SHA256: 1166ff1f57842449d12a38ce9c06b0b741cac13d75a452910fd816d5fe142bad SSDeep: 48:6tY2AuQ/ybnQ5uiojXz6A5EHiUMYc7BlJcqrRzKxd9UVO:AQ/aio6IE/6BlS1B ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-00B4-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 8c9c5059aea815146fc8026d192043d8 SHA1: 4b0368591256581eb1e51567254ef936664eea1e SHA256: dc176d174dea726f8315fb7ca3b604a0e5c26f01a4d1a29ab89c2d148be623b1 SSDeep: 48:RuIzlw5FjRJGcLSAaeGQrSU3Sc466wzv7Gs/y1PiaXodb/8ajUzlAQ969c:4Ixw5Fj74MGKyOztu/TzlAaAc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\Microsoft.VC90.CRT.manifest	MD5: 4988c1aac63e253fcd9bb5e2c7c7c881 SHA1: 8e47fcd4b4a9493dbc0356d4f1d49b83a656d8e8 SHA256: 3f8d7445497d9363542c80ac4afeead2bb6c14d94c3b0362e7750d781552d194 SSDeep: 48:yzlcHGCILbVRsHDybUsZLNfglMdq7rQ5sTEdo6ju7jv:yRMGC4bVeHebUsfSWqw5sYdo6q7b ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\OfficeMUI.xml	MD5: 8346bc872550d1cc44f93d6476d48ab7 SHA1: 5c4ce2539c972530bb9be91fb959d98a6951cb4c SHA256: 6b4a3d2295d4f96c83be44e9543e9766bf673d5c971b65fdab85d044e674f828 SSDeep: 96:yOTUfunustgsV3/+LXjUm5Al0CBPBlgtHxTTGR9zbXv2exDoIjHYqIY5xwpLd:/nZgsV8Al0CBPBl+RT6R9zjv20Xjwd ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\OfficeMUISet.xml	MD5: 4f8c7885e71a71933f374fa7595c921a SHA1: 0b6a595bd575915d9f5f2da0ed6eb99daeb505e0 SHA256: 4c503fc5b567ebd769f373cb0bcf542742fe87c3bee3ed7af51ad792adf5841c SSDeep: 24:EcXDj03kT3vquqIQ0jeFbSPnh+2UfAveecagdw/4X4fWXbMTxMWeaXM8MuheKzH:EwF3vOIRIbGnhbaAve7E4IfObMTTt3eO ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 7a3ab3eb12ed0a40da6b62f6c7102a83 SHA1: 7afa2bd0df60ecf32ea516c0857438a6d6281c68 SHA256: ac015f24e24b13ed5f43a75f1c27e0daa324bc81bdab9ac5f16394a98cc489fb SSDeep: 192:RJsACWfv2qbpSuhth/70uoWQkc9pDzhd8UfeWx2QURVoyg/fo0uAi:cs/pSuhtJTQtLd8oeWxj6VcHuV ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\branding.xml	MD5: 38becc13f5777250332f6ac3a28187d1 SHA1: 563c04d0b33a6e39fe1c635cd18f363f51bd912c SHA256: 196c3aa955443aecc86287595d464a1a546932b5f31d3623503d96625a42fc59 SSDeep: 12288:zSAsoriau1UeQ60OEqnXeWK20G16G51HuG+8kFmuOK9CB/19AlFNRh:zSsOlklwdMZGAFmuP9mWlnD ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\pss10r.chm	MD5: f8ad66b5ab531eb9a04dbc224eb11b82 SHA1: 73faad0de0f3101573eefd992d8f453fbce06684 SHA256: 2495abee09e76c8fbb805053abf49d996ee05afc7e4e4caf61faeb1e02349035 SSDeep: 768:EPh8KzW4AdxC4QNdOCTSfiivZEmgp9ZFHeTHoAy:EPhgzmNdUKwZ4bkHox ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Access.en-us\branding.xml	MD5: 60cdfde2e7718c2adb3b50cf1b530d7b SHA1: 73ed2c6d7999acff3ddb0d656e86259ab42c844b SHA256: f69ec9d75a064eb4e31e620dd02a6a4ef89b56f2576eaad93438cef5b76525bd SSDeep: 12288:2b3sZy2xrmB2t3gpF28DgD21zxawUB7NGQljsKsE1P5+l8h/9:2N2xrmB2t3G2D211ONGejsoJ5Ph/9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\AccessMUISet.xml	MD5: a6c425231d2829e64d63fb371565ce40 SHA1: f657746aaeb6cd6b4d0f24a7cabf34ae5ad55048 SHA256: bbbe3cc659cb35755a3500fd77eb7de8810e666ea12f919e97412ff61d0e80c9 SSDeep: 24:ADa5y/O1pZY2euxsQFRBHdjuRTWoJNhVrDkmipPvWULgrfpeiybAc:oa8/aQWsIRBHdsioJZrHI2lbyUc ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 281cc239d059c7865cd7c3ce3ab550bc SHA1: 03f34d169ea9d817eff6edad37d4eb202729d828 SHA256: 67b835275201dcabb62e6698136b08e6101807d5915e35e491b842422e2938e4 SSDeep: 96:qbkuI7iFKKWsknu8OpQtu5EShiWx6m3M1:eIoWskuPpQk53iWx6m3M1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\PrjProrWW.xml	MD5: 8bf7433eb89f7833d2c18c23e61119cd SHA1: 83314fff9d4ca4870313d35e8ec0e99b3e49cedc SHA256: a159fa24ec2f01d2017ff10f1d9f0eef77cf35920790b6d92b542c26c2d8e97b SSDeep: 192:GhPv23d4cUqaptBdxzLzJXskTwtPCQW6Fa9I3AFuDzLCgk0WlD05CJm:HtLVa7VJDwR2uayDvC79i5n ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\Setup.xml	MD5: a4b373107eda286f1f3ac1507574ae7f SHA1: f6cad4dabb798bc41cb529d21ea6b4e746bd0d71 SHA256: 41a9e8b8235ce182987032a29ae5ffaecd5b7524b87346283e6bc30f11936d97 SSDeep: 384:xw8/HRnzB/A6p5am/taJQyOQWervGOZXc8IgAtapm:L5n9Aa5akd8WuOOBBAtaM ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\Office32WW.xml	MD5: 88224c7b0d8c6c1f0d40ec5b3c269884 SHA1: 949acc0d9192e8129939dd797760f394b613bb7b SHA256: 36ab5d2a1aed17f159b917110ddf99a0ff24b272836bd78c0669bcefec4301f4 SSDeep: 96:2AesUU+/+YYjCqNODf3I/df6oA7Wq4BRW2Sdn658/EEY0a9kDT95:2rW0+XrQD/I/dtR3W2SZ62zDh5 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\pkeyconfig-office.xrm-ms	MD5: 24b89d33ee2aa0de1b49b11cf3f31c29 SHA1: 445f741b753559206a6e74fb4252d95ce418b510 SHA256: 92e96c3bd0eae554ff14ffd85314074a3cae154a929e690420e861ff9b3aadd7 SSDeep: 12288:8wAkxRIXVL7GVDjd3BzTdw82SiQYdfVK0+1L0c8hWh5hFK2B02/x2f0KJCJKREQq:osRIXVL7uVwdtK1t4hWhpVrlKip ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Recovery\e9e23962-4a25-11e7-88e8-91fb2ec43f0b\Winre.wim	MD5: fb072b557000738d28e9575cff71a328 SHA1: ddbfed16129a8114672130b60a0838c12c5481b3 SHA256: 9003a75319a3dce43aa256e3757e6db0aa9e20bbc201e2fe4ef9e7e58ebdbbd6 SSDeep: 196608:QrUiwSg+0fzt6rdLQwIuMRer58gY1fQrr3VID5p3ExcQj6FFh:QrFwSg+ezt6xLQwmQrjY11EIFFh ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Recovery\e9e23962-4a25-11e7-88e8-91fb2ec43f0b\boot.sdi	MD5: 615a55ecb7404a4cbe6aacf18a950e06 SHA1: 1dd457f45de87ae749defc18082c742d589a54e8 SHA256: b0d474d2baef98deebe7b28f66e14de205b021a25bd76aa7e5ef5230ac6d5efe SSDeep: 12288:0+HpjpFcIqEslI8YH8a8Y7y71eRrJ/x+9G3ZjMAWi3MhLyCmhkWoVrGjzTNDcRuF:0KpFbq/XA8+73KGxCmOWoVSnTNDBH/vV ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\Aclviho ASldjfl.contact	MD5: a68527c2519b7df3ad766adcb8e08549 SHA1: e65797d1eefbebacdc5a6728c21bd2420bcbc577 SHA256: 1d12adfdeabca68563ccb16119bdf97c9302a5ff2bb18616b010869ec00a4345 SSDeep: 48:IwZ/bNAa6dLd7DvItXDWiSuUOysElq01OttJeNf249FdZ:IwNbKbNWDouUz1OtjEVrf ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\Administrator.contact	MD5: b115cf3b88194186c0898c7167e6d5f0 SHA1: a0d0f431c0bf3ce7d6834e51129290c6e5e31f79 SHA256: 48e824d66a27b7443489d2e545e69011e9353a6d0301fc95c2a98efd576a8bf9 SSDeep: 1536:ztrJ/c/l639shjecPpsvrc0tEufykFrb2LsLOiM:RrZc/l6tsV3psDcju6kFrb2WOv ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\sikvnb huvuib.contact	MD5: 67aedd48962e2b6580c5df60ab7b8eee SHA1: 2520ec356292b99349630348f4e9408d395e2904 SHA256: ba01381d3a4ccd19d3f1e9761638489aa91a13d36a9409f14fb5f958614b970b SSDeep: 48:JOMuPbi/5ZSpEdoB44USOjRPJ9PoqJTa1:JOVixZSpLvUSOjdJ9PO1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\5xj5V13qcS 7 Q S.xls	MD5: aaf9e1474926a70ef4dffc26fa2e33d7 SHA1: 0d1dba2b1c8aea3c9903d47037c467dfa15b772e SHA256: f14986a72d903dbac4dd0e55cd2825aafe72068aaefa7a1e0217900d4e9821b4 SSDeep: 1536:9bBneWJuMAMmYokUVN9v3UL7UD/sRrKf4DQap+ykjVLe2y:PnevMm3N9v3U/U+o4GjgH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\6YiZIyLqE12kEJALh.png	MD5: 4fb3d0d9beb9e8161dd16825f0ef2676 SHA1: b4c9efe797385a439eb1471bb89f4412bf8ace41 SHA256: 24dad7e143ebb63b3d13fa504ac4a82684d298a018980822b31ada4490a4689c SSDeep: 1536:Td6TS7++7pRGLdQdAwx7/KfS3P3zdnN0uMzsRKFsMDnms6O:ymfGxQrx7kwPb8sGmE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\6RCGO0Nm5.wav	MD5: bb89b4d9c61232f28648caa8011ac298 SHA1: 426df8b1ad00c486f0d0d36071c3aec45ca86580 SHA256: 65006d48a1e0e28660bd7bd70d6571b30a6a66c97700097637ddb45021780561 SSDeep: 1536:ciwmiGn057JybW1Q8hPSGJ/1aAdjkErVGPBL+YhqTlNSr:Xwmi0nWQGJY8kErVyBLtoT7k ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\E5FuYVZ0G8cLufpKE.swf	MD5: 29e6ae7524cdac4f0f23987424c1eca1 SHA1: 3dba389599bcd2b697e5d667154665da92fc9dee SHA256: 69cc8e31ebd21d0b40c6a8f5c4a9749af03663a371a20419245d258d86506977 SSDeep: 1536:dSvcP0BnigrAPUFN7INWGzTQoB3tTs1xWak9AjTlVmbsd6b2R:m3Qg2+eNoy1AWaxVmbsC2R ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\OrESP.m4a	MD5: 3e60a7124f5c3945d9aa5eba52c54f56 SHA1: bde9cac3490cb34a056e59c8e4647d431ddb4ba8 SHA256: 30a18ac9df23a738605a6a8e54275dc558e864f61d56fc6dafe77820cb2832bc SSDeep: 1536:t3OIYOl82Tvax15M0jhdKxskKj54rOMOJZU3CAwj3tbl20p7:t3OIYO9vax15MahdKmkKj54rv6ZUybt/ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\3qEcmCilX86.avi	MD5: 2b3b57f1726e8eedd76c39f661a4f31b SHA1: c487ffa6b5481455fac6ef43e0ae49603880c07c SHA256: 051260185f1e45d3a6751efa6e4f343f16fdefd5b23d5348c7d8e8b1e2bca2d1 SSDeep: 384:P45BNk1o3kViI2tLVM+vWLEC/2picMO3mgXBQZzh:g5s1ogi9l7vEW/Nmgxih ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\_6VHfFjcxfJE.jpg	MD5: de59a4836a09823076e9dbcd32a3b2c0 SHA1: 4ce24a02133956e877da6d2d1e2edcb45f54e59f SHA256: 821222e9c71860c7e86fc8580940a9d5c25011c0c038762d987e0e1de3394e95 SSDeep: 1536:clRlnNAHSfDX25gqIFSbGkdgMHGAwziZtQ8OFGkqMuuOj/v/ytbNrONpbmDb9JhW:cTAWDXaBIrQg+WeQnFqMnODa19horNTr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\cBZLPQiVKzi.avi	MD5: 2a7316327789058be5b6e87b03fc1c59 SHA1: 813836a9aafcc5628831538d732a2cbe5ab3b69c SHA256: 14b2c62d8f69dbfa39022e179adb1cfb9fafa0febc90a8fa7b5a79f0a0ceef63 SSDeep: 768:+s9DKCFowxFLR4ZCyXhg4dBeMDkb/Vr4qso43+Q7bqe3P:+s9DNB/CCyqUjYeqsTz7+e3P ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\hFVeHDPy.swf	MD5: c78c720a95cc7759a362d87f8109a103 SHA1: 5c0357419568a5f9e8d72f50b204f5023081b38a SHA256: c1a049e7dbb04a854e3ba1d0349051c3409a09a05c0e40da0addd98aecc06f52 SSDeep: 1536:FxK6D8zE27RjQzkY4VnkDH9nUBDYVKNQM8IOwwJhnLl2a8ZO4v:FxK6D8zE2N8QJVnkZWYVKNZihnJv8Nv ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\hm2zh8j mw-aJUtk8IAy.bmp	MD5: 46cbccc20675ff300771569b51b5589b SHA1: 9641ae0eac0d92cdbf446be9bf1169f01bbc062f SHA256: a99980a86c9b504cf2559ad796d7ece8712713034702c5e52229fe804690eb9b SSDeep: 768:8tVFwaXktm6j0ZjCbWMx6fG0pgtwTTzpj1g2txRPBqCTu8D:8Ka0tDjSCOfG0qtePp5hRZxuO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\htiG am4A1I.png	MD5: a25018a2cf19edba95b8a9626debe01c SHA1: cc135e6b250079b64981700c171938b7634395ec SHA256: 069cbb0dd93ce41489376bc7e83f33727c3430422e511468a3862b3b54f92b60 SSDeep: 768:z4+mu2hNoQyiY4VQ9EBakYY28x3lyyNE4x/ul0lLe2xa0Z0sqFtxiPLZF9:zfV2hs6q9EBak3VVlyy3M0lLbxa0WMj9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\ncQ3OCF5RA9oNgsYxb.wav	MD5: 4431495f36a6af98106af14dd92c0c7d SHA1: db7f713d12ed7050f0ef8b522268b41ca4ea51fa SHA256: 500e8e78740cc5f7c8324776d94ada13a4cff2fbf49d785c88fde8363bd98a94 SSDeep: 96:KexIOBsO6G1uGygkkI/pn++vu9xLT6IDz2oul:KMyfkqpn+lfVDiFl ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\yDv-xMox2 BshIi9.bmp	MD5: 12ee63d315770279724bf8aa28cbd6cd SHA1: 10b408c4cb7d0823bfcc69c222b7d695596a8e8e SHA256: f769cb1b887802bff09e439a5616ae1b21373cb4035b0e58dc2db4314f2912fa SSDeep: 768:Wke2cGM6tc9atHAUF9lyH2WxbQV5sy8NdfA9PCypuere3yLVytmw9I6WgifVp:WjpGMJQboHtbQmdmPprxVmmw9I6mfr ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EXwvyT0tN2ZHn.avi	MD5: 4c117967dbe4f9a26a96dd37ad4a3a93 SHA1: 1834c084557c77fc6d2e446f2b7ecb54e0a55563 SHA256: bf18064a2eb0efc92d9bd8af20f85b33f4009f1042a7fbd3bb20b5e79ee11a2c SSDeep: 1536:/3r7IlQhP2Ebm4Z7ClxCv3RIr1AzvQPDkkUa3S9NnEh6Zy5B7TDFe/pHx:fbhgiwxCvBIrGskkUa3ONca0xvERR ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\RChbU4tjhigJsWd.m4a	MD5: 0d5d9493fa1d0a8d05ed47da1ae36388 SHA1: 8de44b7311e1d4bef3a93dc7871477275dfcca00 SHA256: e04995ff1ce1f22be576149300583bc8fd12aef48cbe899189702bd591989b3d SSDeep: 384:JJv83NplBuj1Suvv7i09dlogfTWmyKU9XkRkIHKth:JJv0g1bv7X9nTWmYk+MKth ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\Tuo8EkNp.jpg	MD5: feec3c11613b5a14466c17322213ea27 SHA1: a98fe9d5a14c178ab9c6c86834667a58401952a9 SHA256: a4d6ef36e057fb936eb97197b3e86b0cf9efc6795bab478df4c89a20a3c86b4a SSDeep: 1536:7tdIXIuJG3VYJED4NJMisTEYZhDVhmPpjpw708ZE+QtJXsDgNcGjOoVw:3uJG3VYGGFYDDVhKG7Pn2XsNG7Vw ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\gLmMSD2.jpg	MD5: 0b17a289445e47689aa1008ee5bfef1e SHA1: 842e58557961f173ea17d55c2745e2d35953e547 SHA256: 4b192c3477b2de293ac07804a376fa009687271884c5ddc7bbecbcffccf14928 SSDeep: 1536:SIrJ6opGVcWu3Tr0YcKstDwwWVmqXyDSGf4dIvU6:xrcoMCWwTrGO9VbCDdf42F ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\sBD1QdkY.flv	MD5: fb82a35e247e4073b0442e5779532e63 SHA1: 5eb6a446044d78dc90528f24bf925949f0d84ede SHA256: 86255c56bb0f040bdc10b165fe754b047e18f955f901aa53b5bd486a6ef0962e SSDeep: 1536:84O+PfYIxVTQYUjPZyaD+fKej9wpkkohl/FWPXaK/Pzjq7y0JViIKLl:84pPfYIzD+PZyaSfjwpu0H/Pp0yT5 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\uAGaXXfmNTeSn6aQso.m4a	MD5: 5eb2a86bfba01e23f497e66cc495e388 SHA1: 0d780d7336b85350a396a3a16196892dbc9f542d SHA256: ce9ffddb817cbb59d8771f93688f0f057e5e08b30a0a5b3515795f39e25b06dc SSDeep: 768:qNHn/4031dQU2Eh5xaEgRPnxwpqNRdiuIcQ3A35f1OpOVIV4xBAaKdmIT9Z:+f4sl2Eh5yJnxS7uIcUI5wwxBxITr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\w4fe2ze8GN1YF3cWCmCb.m4a	MD5: acf11ed85b927155fbac8ed23fbea2d5 SHA1: ecc5977d0f3ba482e44c7e54035ce1354b810046 SHA256: 408ae45d8fa23157bd6dcc6ab22aafc80fd26fdaab59d8422ff43e4cdb396e30 SSDeep: 768:eLHX83CiNqBwKv4FxmZX6ywlYQjoWroFPo:gHX83gBwy4/m56yPZWrSPo ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\1zszOcg.pptx	MD5: 31e78133da1cbbd648319a8bd7891a7a SHA1: 7a05073e6c2fb60a4e55c30635cf12dd6ec5db20 SHA256: fb5b0143af424f5006d9b5c6861d04ee6c3a78f66a24143d1068bea06bb2b1c9 SSDeep: 192:mR1c8MEf31gPZxQFBg7aEaunhuwQrVv4QagChA:sMEf31gZxQFBgruwQddC2 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\Dk7mKnbJLmGTyjWV.pps	MD5: f3046cc000ac9b171fd5d188b830b935 SHA1: 4c1c917a952550f79344123ea19407d7fbf6aa92 SHA256: a53ac5fd05996696dcee43e7849450f2a6e754f110efdc0398b11243a0beec7c SSDeep: 768:sUiJ9QuD8eShw7rAzTicFfV0fUOiRrmReFBHi2cHOPa:sU3ugeShhRtVe6rmRyHYOPa ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\DrkA.pptx	MD5: f18998dd9e44f725faaa50cd201056ed SHA1: 585fa09ca102b953f3e23497d5579a84badbbdcf SHA256: 47c3514a4a32a48d95f0b04f83407dee42e60ab6620816d4170e0c6a097e8c2e SSDeep: 1536:nawFMKV3dM3lx5NTAT35krphtH2TkGOyNGWDmHP1W9BtzqmQ/JRLNJx:qqy3B5MJQhtH2oizmNW9BMRRLNJx ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\I3ODYtrtIoMU9TnXB8.pptx	MD5: 64f56000e76ae2133e08daf86ce0557a SHA1: 8e0206d676e0ba1d82bb40318881a4b52d4b2812 SHA256: 4b3eea176656043234b7714419b92e26f92c4cee686f4fd693c552d513e62e94 SSDeep: 384:eSZiDhxfz+hgUrpOxm4wxfOhfVXOsLNJEOQgaBGVYQl6XlC732CqTKHDm7mNY5:7MDhxfz/UlwlquV+cvaHQl6XlC73bq// ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\Irr_.pdf	MD5: a37d2dde100b3703f0ff464b33e9bb28 SHA1: bbb3e83e0fbab9fd104e315ae402215fa594f2bf SHA256: b68840f723c63c86f2a0bd89e98891fbf5a868f61ffa660c758bf99289591561 SSDeep: 1536:Og4omFxNm3sUgsAhEihSBkAWDRefreWKTh4DN/bkVlohM:OgN4xQTkSB1CReiNTCtilD ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\KYOamUk14HBWDY9DY.odp	MD5: 6c75a7a4affe22c4675dfc2c468718bd SHA1: 87858b314bdd4d3aec0601b7075baae4d37b5720 SHA256: 043f01097dc070421680bdab4e8a516bf81c925cc0ac7d7c716f6999d9e7f0a3 SSDeep: 1536:jwU1qhnurnnaA0VOCrhnrLEAeV3vDiNLGVU/D2G/t:UUMVCaAaOCrcdGNLpDt ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\My Shapes\Favorites.vss	MD5: 777b530da0458adea89a3e48b02958cf SHA1: 2cee5eda4cdc8497bdc644d5ca57df412c1dd763 SHA256: 2771847e23d76e3db0bbf8884f733a54dc9d2654b861b62b663ac100123df77a SSDeep: 12:ppDuVsS4c/90367dpp0p4dCp6kaCqDlUjMOLnGpnbUOGfJ:ppDLtcl0OO6MRXq+jM6G9J+ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\My Shapes\_private\folder.ico	MD5: 0773b9f91e257ab6dc34f95b4d5edf85 SHA1: d85828cba3fcbebae844d458875b2ac7099fe1bd SHA256: d395b19eeeb387f554802359519c78d3c0bf10dd08ba70b42beb8defc65127dc SSDeep: 384:1MG+lsTvv707iAvFUcE7eOgBiZJ1ZwA/OyorP8iMI11O5DlQ5+bRctIwVI+HOd+T:8Cz+tm7hgBagALcT11MMY1WI+u/6 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\NiLRt-IssRBIvJL.xlsx	MD5: 8e4a88c37252d67cc74ad30839107fd6 SHA1: 15ec54af9e1518835075f76216be2e359a8c8789 SHA256: 0ac2db0cb070b927d6f4f991d86439ac7131e24d8b0311e9a49c8f6860a9e1fb SSDeep: 1536:zGllGzlgo9qGqlOXkSteqWhXjv+O8Y5XJTafcTQbaQHDzEeU8BOflBLWosV:zwKlD+l0WhL38Y5XAfcTQbvHDz4fi ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\OGo4dD K8S.docx	MD5: 865c065dfbab0b8e236a2d5e9521de45 SHA1: 89120ba47cc10f394222f8c76d480fe75972d03e SHA256: a8bfc41bfbbab9638cacdcebf4a15a91443f3d6689f18c1f2f8e2db1773f4893 SSDeep: 1536:vgFMLt/OhRyapdu64EGAUGOLDbvbxSQ+W4l77IygbU3bXOdhe:IFSe/7OLD87IygqbXOdM ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\Ogf7AjwKVj- f7L.xlsx	MD5: 9efe73b3f1aca5e0cb567361db31f425 SHA1: 80ae99a5ea7dfaad58f6f3ed6e8d96d9582832aa SHA256: 3120dbb0cf6c2b435410c685d73bf7ff903ff509f9dd3f6774f61c4eb923276b SSDeep: 768:ou/lp9d0Kiy5wxj8a9ax1Hni6xpnZpBoOGQ1txKSic999/CPp4vhmb540bKRB:Hl7ezxQuORJpZfoix996Rcmb540Wb ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\Outlook Files\voeimd@djhreuu.uhd.pst	MD5: e083aeb1e81de75939b88007b4d86835 SHA1: 247e35498a9be79778eb5d4b8770309ed6061aa3 SHA256: 04700c9f694b0052e2ea766c188c24ef371eec149e4ecd888ed39c017d5a2ccb SSDeep: 6144:MDQLbUeqn0X1oTwJzjBqPmSXRea2K7LkpfKPue3/5oVm/:0QLbUmoTiPBqzwVKWfWph5 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\QA7FXyy6TF.ods	MD5: 5c35cd534ce2afb1e290ac788acb9a79 SHA1: 93d1ebf7455a8ee480572621f90330950e335bf0 SHA256: 4a3bfaa605ac32966f0aaa43735c5958171089d01fef0fec3f211dd3e6262ae4 SSDeep: 768:t4WwAN/kct7OtpM5xYNBkW0q5CIkZmQAO:6WR+3C5x4BkVxIkZmhO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\3nwYBHTjUPQgub53.doc	MD5: 82b71151e50f61566eac5199909fdda3 SHA1: 5501312054f95dc9f589bccbd4d813c09bea6f87 SHA256: 7d205908e5b8471d899505b8b251a31fb40b2e626f41f82bbd700e06acfda298 SSDeep: 1536:1Bco+vVv71fFizS7xAxTpEB6VOFZXgzndvHwHbfsFGihz/OueW6:7+tjTizS6xTpf241+bkDOg6 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\4rFkQkbw6 fiW9Q.pptx	MD5: c6489602af6993854e97fb9aeca64f6b SHA1: 844a65e0961c1d3bba1011a5b52d0a96690eaad4 SHA256: 2c9d101e5a30693a556451227faeb31ab62f53b5a50c21879f55db7370f17579 SSDeep: 768:E5lXO9cYgVjgBPxEiBfaWbDp+6ZXmUawwf89CC+HK24rn5:YiHgWFxEefLbU6ZXJFwZC+HKBrn5 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\t61aX7t i.pps	MD5: 4d1b897c6be99e727cdc29b0a5eeb38c SHA1: d9278a1cd05ed0408aafe93540b92aa6bdae1901 SHA256: 43d34528ef9788b95cdc11701fb08842bed0591eb87068b747f8a6f72d999e89 SSDeep: 384:6l0GEMPuQ2Pjw7/12tbmN+AgMaG1yoiEQtlO3byXLB+HtIiUyMtQld0rlthPOaav:66GEMPREjc/4tbmNmFS07ZXd+mOCcmrO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\wO1H005NmYKDORdxx.xls	MD5: 4836dd9fdf004418b60729b7cca65edd SHA1: d82094a19afa0c4db760cdeeea4847f365ffeaa5 SHA256: b797cc0155620cfbfaa12f808a181a4da7577ff7b9b3a6a92d5ea91123a4f15f SSDeep: 1536:0ktL9o6gSkhCXZnhbWAgtlAYQDtnP0npcBE:0kwhQthbmQJPOcBE ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\gHbU7_W8JM.xls	MD5: 8257248173ad5ad1767bdccb02ab7f12 SHA1: 63606a6ebb38fb9edee6f0efb957677056c7b492 SHA256: a8b9899469d18ab487bc04229a5a65ca23c0a937a2a23639bbebce2466be320e SSDeep: 384:IjjuAa/FzQ7gl8O/VmemEpJMA+t5qXf7PVyu6j2XUt4:8CAUFzQLWsdYJMA+bqXDPVB6j2X64 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\hFm1kpKH3Q.docx	MD5: 2d7a371fb77db5ea318c17c340d31783 SHA1: 596465147ce2b2b8d32f1c792361b1e77dc867ea SHA256: c2f3d4fd9090e5a634fff5a2193428ecc35e161cd7da2b676a84a245fb101f43 SSDeep: 1536:KIQCI0GhOG6u+UQykmfRz+M33P/2RhQ30qdbmvE01w6eEkcZxhGxiqwrTZ:l/TGhOGx+UQyk3M33YhE3dbovNTfX9TZ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\hGgaJMwOgUg.doc	MD5: eb42d12983a253df49d4f95d20063fe6 SHA1: b3642c274e3f2ab4d6a8a0eb5174302a66d2bfab SHA256: 7e7523e6517ca51002c867bd025719803865558eff0e4088b544566a6f467444 SSDeep: 768:h3XXTh7VuQe2jx3Ro+gkTNRwX3gIPoYi46GE/eNKcpz:nIQJxhjCTinGCS9F ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\k rQv1BVbxkLF1PT_t.pptx	MD5: b00c190d5f4b29578ee7fea1df765380 SHA1: 919c0d4b18f804027946c8368a87f1bb32d59f53 SHA256: 701b11427084758b196d3890cc7411bc6a0719fe2a08dc5b5bab3ca0f2c93997 SSDeep: 192:GPx2salv4otgFYqCngJN15f8OXF1AQnC2HuSUFRZQ9OR1JLiOaKwKlwzwg9SQ:G52RtNnI75f8gF1AQnC2OSH9OwOabwQL ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\orgKFXQ--.pdf	MD5: df223285b1d699e234766c8833686fc1 SHA1: d9ad014f2202d51d66ade6b9a47ba488a3566dd5 SHA256: 7cfa1ed2a0e0db33fbc75da34a2b7ff29406779dc4ee3dc21860007496712d48 SSDeep: 192:9+50qvClmzEUTxozatiX2kCcZX7PEhFulk6ounvVyMqLDyKcB/8QdSF1TFKcjmJN:Iq83UtdPEhFx6o2vVn0DytGWcjmn ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\r ATUhf6wTb8.pptx	MD5: ead2470467b639b336cd43a390768a10 SHA1: c2422e29e7693912f230f3b3e9c325e248ca00b3 SHA256: c5ef4054238dfc535150ddddf711a256b4409e4824763d582cbdd7ee47ce28f1 SSDeep: 384:015YRxgaRPCi0uRfch35lzk602vo1YcnO+wxq5fdKBQcGYnevjSmeP4+NYw:0gXdP8Yfy55kIvoOTNQcVevjSmePKw ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\r0BhnPupzSSdlJ.xlsx	MD5: 83ca9cbb6d8d79dbb87bc4621db401ad SHA1: 81d7fb12e29f7295406dadefa348424ce913a139 SHA256: d55b5d05b1bc348334d73090d92c573c6aba05bf455d9684fc49f2a2f1f013d9 SSDeep: 384:4AVuKkfZG15uqxw7uBu9oosyK8DKWunQHbXA894Vok0yU1YO1NhaUy5:4AVuKi0Uaw7cusu2nGbXAZ5saUi ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\xnz7-n_50oeM8dJ.docx	MD5: 6f5544561b6db129d8da558173098a64 SHA1: 13e3623135131bae5e78bc0a80d34fec3e5f0639 SHA256: 00e114823cff6e086abe3969750295977c59fc2807933d041c78a90fa65e05e9 SSDeep: 1536:f/SoVDilIWpJEfsUfffUIhIrKbzYzqgvMwhV6MfsLHIhg:f6oWIWpJisQZYOUnfNkb ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\z8I3rJ8jHANzTdsg.csv	MD5: 1d04a79b01da50fa46586bffbaa4c825 SHA1: 779d1cf44d9b9f5ce8339d852fd7bd98ed213111 SHA256: 42825ca0bcb5efc52b9667987f2ab8e42cc57b0a9f896fad9550c0301417a4e9 SSDeep: 1536:V7H8nZC7aVI/mit7czc80x+frPXxFY5P+6gJcux/YzBAmr1:V7cE7aE7tQs+freP+xcux/tmr1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\Bw4bl.m4a	MD5: 698b0447372f42e5b451def6eec87267 SHA1: ca94d4746c51e28aeda374f0995e644cf30b4cd0 SHA256: c85776a634f8539b69bd08401262f9f8eb7fa74c064488c6ea56540ed0cd6e04 SSDeep: 1536:MXvIt5I0f60hfkpQkXQJI2doG+dYJbAHje1b8dZwQOZ4jvfXgJVR:MUhfkpQdI2/+WE3dZr/jM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\NGnj_ h1E _6.m4a	MD5: 5e02452dcd13761d1b66feba0720934a SHA1: 9bb9363a29a4bc3e5196dfdf874639efd0e3b10c SHA256: e50806ab5005e834276d3bf9bf037d4257c96a0283fc27e549046074fa7a990b SSDeep: 1536:BEtkQpMx0IfUYRjb0axwgFcLrkaJS7vDmg1q/t7+1Nnu44Rc:4fQfUCjnwTj2DmgctmB14G ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\2fDth.wav	MD5: 47b65d04303919539f4f41f4aa003b55 SHA1: 3ae5d72636d191ba41dfffcfeb98b3449d035938 SHA256: ee734ba469ff53477040f466471429d234c53676566b21ff0c868a2e17eac308 SSDeep: 1536:wqckG6/FTtQrxW3HDQiMIyQHOQSRPRU2vBsZ3ko8Qcyf86vIV0mmnUV+wcBDjXwV:RHG6RNjQbXmO1RuWsZUw0yjT32P ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\Aqc3Tj23FJcwNCLyRx5q.m4a	MD5: 2b8af97e09b5bef6e139d4838bbfd76f SHA1: a21f8b7ff41568ea05a221cce5cf50307bb8c803 SHA256: 05df6665c8fc1f6cd476ff213520b144d37c0bd9a899e9ccce8355b1ef1e9545 SSDeep: 768:mnjJf/WrkM16Q/kpKsEGBbutgLoL1amUhyFuUSR4VsJw7LNpy/Cvkcz4:SJM1iQpCqrL1MhygSVUapwCscz4 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D YYwZ_lgFw4_5bNPRct.m4a	MD5: 57719cec2f370c80b0e4d5d91f37dff6 SHA1: 153f799f55add30ce2fd6bdf8f5999bc1a1e0fe3 SHA256: 55dca23540b5181cafe62ac8cf5ffc22a4b41685213470b3506d2a93a85c2c36 SSDeep: 768:BeimyTNtKVzvI3VXiTln5NvkzmoeMT05c1mmCF4d5ZK:BVDptKJvIFXiZ5orQNm/5ZK ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\ExY795tfOc4MdI3s0X3U.wav	MD5: ad9850faed4e88587a9b586a312d01b4 SHA1: 95d7fd8bb996dd73e0a67f5fee6e797291208323 SHA256: 59e45961d9823b72993e8e324d0045b1beb820b8f6aada584db1e6061c19aee7 SSDeep: 1536:Cr7icE9WuGsAlmegf8YKHyEMnDGUwof/a0B:2icE9Wddg/+FMyUNi0B ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\GkT80-gRsdkeVwdlzDg.m4a	MD5: c480aa7f9de25cf7740e8278e25c09fe SHA1: 9dadf0aef9dc7b8dc20544215329d632ae2f8a4e SHA256: 78d39569f6c5db7c133fd5e937513ce9dabed1bca532efa686971960ad2bc3f0 SSDeep: 768:LuZWt1r1qHR0cAA3PhONSFTYmq0Emx5oR2NwVN1Y2u+XEPRE5d4ZaF:CItfqx0c5fhONSFTYgxmR2NwfGuEAd4Q ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\OLdQwjjqWYt_V.m4a	MD5: cc1d720fa0d8801bf5822467dac6b47f SHA1: e2d89690524f02ab0c800583a5d342a4b24c67b4 SHA256: 94bb992a656a4d1f09f865364e2e4662a9e7eff9a3161512900eaa60f8abcc59 SSDeep: 768:WjRAi3/gvIHKVr+bLPJpdPDwXOE1irE6Tun+XnciZc7uGqGervuRcnG:0AiIVyzJpdPcsE6K+MVqGerE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\TkvglmLL3W EQ2X.wav	MD5: 28c6abb1e1a17b1ddbbb89719620c333 SHA1: 61c9a92c4a829e3c0156fc7957eb4b4220c7fd36 SHA256: efeb806bbaa82df800bffbb17d062030174ca3069af905adeda3369aabb4b905 SSDeep: 384:DVzQGwOlURXAkJImvhbnOAYVRzfkBsmqsD6B0gbjsPnHF7nvUmjqC:DKlNznONVNsJMjsPHF7nvUmjP ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\Wql_H564x5E5Zo.m4a	MD5: d5a01274505ce0877c75d24ec18b2d45 SHA1: 07055c53c69f4386e6640e1488d511240ccf04dd SHA256: 75372be030a775b4099dd9b07eba638031c2c633e537ae9ae8312714256cef89 SSDeep: 1536:Qpu24OzCRqB+geHrPqDvKF/QhJoJWIitI9nPkhf:Qpu0zC2+geLQ4QhcWbsnPy ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\zFvqNkEKMTcCDQLAExj-.m4a	MD5: 02674e9311ccf022f31f38a1656427d7 SHA1: 7f158894cee9ccaf93ce038968029adf84955415 SHA256: 0ac78b26faaaf0811048cce13bb198aea7019a3b79b4da3cb97e06fcc0ad530d SSDeep: 1536:bBsB4HhIS2gDhN1PS4bfLyCydXdqR6OkNp7Ol3+0gBLjq5m307kwFi8iAFb3:bnmgDhFfWC8q7k/7c+0gBwmk7kw08iY ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\VI2lh.wav	MD5: acac88eda84e6a7735cddec0d14435f6 SHA1: 618f95104dfafa17ae99b18d0baf7b16f04f3b26 SHA256: d8e4cf5cbcdc995c6084ff1f8a865ae8687bec4a0fe47cb46ef6f9b8623ffb47 SSDeep: 192:5iqQoA2Rb7OQuxmjfw5b9Ygim56/M7nDGJdoh1SASDhv/nYSt1D5wkGvAKB7aKZz:5iqQ/95b6gimwmKJah1SAOhv/YG1GDIy ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\XUY6CF RFsJ8qI7jeBQ.m4a	MD5: 72da502a57936aa5847989ef02344dc0 SHA1: ef404644db7da373e3781811dc977a943632b292 SHA256: 7a8135391efbaed1376f61882f4dd63a62664de8236459cbf05cf978a3048309 SSDeep: 1536:5/LXa2G+IvP2+loe/piLbKtGoLNHBq4l2d65a3EPr:5t5IvPNloOpiLO/xVlPr ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\sE0z-pa.m4a	MD5: 8cb3a246c0b7e1c5c8f465dedc99dbfb SHA1: c37b92fd634f9a5f06c003ff15d0c6c7ed544020 SHA256: f6e5192dc99c6c1559da041b0f1ecf7995b682a911d22c8aabf04c0be7e4ce12 SSDeep: 1536:IS5oERf8LuQuRazpJ5V1oe11620ItnKpHZ43uq0IaL052MWT1SvvqIelQm:ISlcu7Ihyej06sHZ4+VLLafvvur ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\z86ZZCWl6Cmr G.m4a	MD5: c29dea9448eb0c1278283858212b6898 SHA1: 02296151dda65bc1b5133daf460ec2fc1788e370 SHA256: cdc7b133efa97b1c63e0b9fc614bd78b6effa6968b8e7fbb93f75d276c5f6651 SSDeep: 1536:TD5vWvtv3yejMxQhkNXJnB984XiDSIDxkOM8vEHNTfK5W601wCTn:ghiyMGeNXiDSIDxkmEHVK36n ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\zM_WUfi 8.wav	MD5: 8ef3db836fab5d263fd23725fe1b8476 SHA1: 65bd85525cf690c96528c68effdeb52a35c1f217 SHA256: 914f06eea7ec9a1f09b0cc3f3aa2af1549489fd4599c71e95891a5759f633d7f SSDeep: 1536:em+pH/jam8oPfpvbmoTMeAavZx4spu93pSzgBHLJJaEJk044DmKVIAKE:AxO4NbrTMmx48WagBr6ok0rmD7E ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\jrC27p-IO0j2Kbl.wav	MD5: 8250ea4472595efe69d29f50752c199f SHA1: adc6c1dbe8f413892db7f0ee8abd551a3244e7ae SHA256: 26f20524e4069f224df87be0ea6c9ca12e65c8b37cead274cf3c5c843618b423 SSDeep: 1536:KG/sdFx+BSUqgGkewJwU1Hb4TYe6f4IOXo6QNH+cNGoMdoMWSg4Wh6nZYrrGAnLt:GdFzKLquSH8NHWoCoMWSW+KNs0N5 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Music\m0glIt.m4a	MD5: b9ddb39129a25d1c3f1ca7ada744af08 SHA1: 6427b9ac3206f3821e3c6e8e9b0f67edecaf5859 SHA256: d12e89140e49cc85ccbd2047f9f09a655305c14a39f487d7dffb1903e2249096 SSDeep: 192:CZuuyWVRm5tG/bs+UfaqOUBgn14WNlgtn:kulWVRm5tG+iqOkgnSEIn ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\-Uf_nS_aQJPj.jpg	MD5: 509f2c1aa6c4e8cea138bcc9d3ba3a53 SHA1: f80d3680587c85642459e25574e43c1baeaef3e6 SHA256: 19e3a70e120fe5d82f94304f5764f3fd6aa7d1f9675f097d4485ca9edb970e5c SSDeep: 384:mTwmX6OZBMXzsWnyYKparLZJ25ppvp5t/pZ+tNulh8wx7DB5d85bdn:KXdZBgnypaXX2/xRpItw1hvIdn ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\4p98rTVFWk9NUKd3XYuz.png	MD5: f9c9d5285afaaa4f7bb77626d364c5c1 SHA1: 6c97ea9dea1257f5dfb53fde2c6d5e7336ca75f8 SHA256: 6ee0c7aa994b026a1847f2da055974135a381d620e7f58f991f54d4f8bc5556a SSDeep: 768:DzacrHG/zIRf7quv9qocUVi8OtUKbtJ+Q/Eg3DmEcn/n:nagm/zItquv9qcVTOtUkkQsa+/n ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\6f6fM0kHHEbQnM.gif	MD5: f68ddb81460b2878d69bec8b697b3c45 SHA1: 8a5ceca108b25b826b96cf9fa1c6d538349ba208 SHA256: 59a81af2a94d695e3b9c2521a3c2a8c2ff68d9633a3111503cc79663f5abb68e SSDeep: 768:meAJigN+1fauADZg8sh/SbnlazvLnVvKy32r+YkJMLDLiv3eWDNLH+fW:mFM1fauqg8+SbnlazTnVuLysU3fZLH+O ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\7nOMhYU-03VZY.png	MD5: 1a6082a7ce81a0485b519f5a49f4e156 SHA1: 0c31cf12cecd2b2a1b6531bba1a7d6e6760d5c60 SHA256: 3b21b2df1cd55922fdf01dc220570972896c6d75fbdaab725a40995ed30e2c94 SSDeep: 1536:4IrwGvajX8lyFbRNL7XZ098mBBp3BH3JkE31GRtYYYVhvt+FOTB:4I1Cj8MFbR9pYBxXJkZRiYYbs8 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\1kvq_JfG.bmp	MD5: f2e653c96b703983cb6c30ed9380957f SHA1: befbf373f033d8ff5e6d4faa3074a94ea11d3987 SHA256: 39d0d4ebb5d47ffffccceb7ffa8d6e086fad7bcbbb0108d32e1ff89c899188bc SSDeep: 768:OSlADQgX8ExGvFxg8BUsaleLurBVnDaIm9vNDO0XahAfcEStsU3ADKUxieI3Y9v:5aLM3Fxgaq1VrSNKqkSckKYjI3Y9v ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\AY69cWjwS0SyzG.bmp	MD5: 8d90e7ea339ef6cd146e83d69d6d9dc1 SHA1: ae1548e4b81a2efb2bc203d18d7f515cff155359 SHA256: d7f3b5b9fd67c270c19ed9715245807b3544a7cf2e10848bc83f4fc60566ff42 SSDeep: 1536:X/1iTIuI3SwpEFMfVugL2y7TkQI2NM+MMAsFvH67ffv94ODb9R+qu:P1iT7OSJSugL2jQI2NsMA5bfv94ODb9g ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\B10kaWPeJI.jpg	MD5: 772a37ee8f06f877059722f9776451d1 SHA1: cbaa047a49a1bb3cb8465b14b7a28c3daff8e294 SHA256: fc29b5e091e7e2f1bce5656452bb9ffe2049f54b063612052608993854560be4 SSDeep: 768:z++MzKgt4RhU3mfJ/duaxpZdj7K7zCtrctAniXpaYesrpBjau22Ugy1WxsVe9/ZV:z++dC4ReS1dVjZdn6zCSZX684u22Ug82 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\TR0BzaNnDj0Uo.png	MD5: 8ceb1813defed43a94f0504c6cdc72b6 SHA1: 12a51feaad6ab959aa3ecaff2ab0fc6e19227aec SHA256: 8d6a0fa9b09031c913ed179e4eb6c5f9e7edfe87223692df35b01daed30aee4b SSDeep: 1536:zWeyS0R0ve6JYB+khZBHy1nOOSaUDsTi/Rz0MJIDIKTN2+iU:Fykve6JYB+kh/SdRUrV9JIDIK5gU ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\bY4dV3gQE6POb2gQy.png	MD5: 5f1d0fecd573aa4c95400cbd167fee08 SHA1: 2d8d288deca9e3e4c9f6b7fa1368af6d082fcc69 SHA256: af2d3c440ec8db7e61240067f38625bd1d8a415ec8d8addef031f190e6db02a9 SSDeep: 1536:Ug3SBFLmyjif53o47ULrGRBQk1SAq9ViqGeuIMydEN+T:UgiBFFjif53o478CPRSAucp2h ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\fOqctAe.gif	MD5: 43bdb3f24d06d517bbc629e06355123e SHA1: 3da1b6eaa48e60e21a33e13bc7dc75ce1eac2102 SHA256: 9eba1238e6937411f8ba7b8d32704dfd1fb0afdd4b01834d5da3382e9d64e0be SSDeep: 384:yrTNkJR/Nt4c9B5+gNMwpTxkjIzOLGISd+RvxCij039rSq5T2jpTjJdaU7d:ylkJN0c9B5xrWIKLGIvpa39rSJTdd ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\h 6IzkeGtDMfDw0qURjw.jpg	MD5: c3433abbd7fa3efc8365cf1168d9208d SHA1: f98bd06d961f6c828eed448f3876949603327dd4 SHA256: 2c1e37de46dfced62cdb55c38fa71ce46fbebb22d96c33b7064843a57b42559c SSDeep: 384:UFq4BtxuBC1Y0X8kQei/K3w6qSzvmtSxNze0YlSfMcnkdULZ:U/BtUBaptwK3w6qqmt4eZF2F ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\jVnZkl8xLMAlp91n.bmp	MD5: 73cd2e7ccb498612e2d21c1802180f9a SHA1: 58de53a463af43f614978a4dc6bb2de3f699f469 SHA256: 76fc374552d6957ae96950dfbb15afced189758794b7a07191bb459e7f96edd7 SSDeep: 96:1pAkUOBG1F+t8dMSi8b76VpsYljIGoByGSYYjVKjleB:1pAS58eSiEzcjIBByDYWEpeB ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\ljVt.gif	MD5: a493b39fe54a07e0ea5cff9ebed1e2b8 SHA1: b2ede8c93f852d00cebc66bdfb548d1f8921e749 SHA256: c6266981370be7efdcbd032b89e8f44fe856b6d2079488ba33d07f39f41f7f1d SSDeep: 384:uiizBxb0rxoL1yxGw51a8QwtF295RVYLh3c5Y38YE:uieBxbmUw5lN2bgc5Y3LE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\qYk5-.gif	MD5: 0b714a98c8883f6abb7fb0bd253a379b SHA1: f5ed7f487853c75b5202d277fd00c6b2c83275f4 SHA256: f8deae86e14b7ca4df7040a1478dac23075adf5d414d0d421cb82d8590da8a37 SSDeep: 192:uuxYu/7nDR9vOmuv4jOZxBH+C8dLn6Ol9Dzn7Fc0wZWyIK0hbf+qiM:uuxYI7ntImnOZKCeDNlcpYyIvhj+qiM ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\rt15iobTtzAY6p.jpg	MD5: 20578b2a28529da974c5abe8bdd9fc5c SHA1: 308ccaed18d6c0bc540ea7870fa33d32098816db SHA256: a72a70061ec57118b8ad4bc0c99b798cfb56457517f63b11593b20cc682db382 SSDeep: 1536:2J2Z3EAJ7TkGffyJwqn3d6PoG+cutYTRvn3vB3YwHDO7OlXLOjXKYLOCRP6fX:2c3EAJnfffyJwq3d9G+ciYTx3xZlkjLO ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\3fU-xgmX.png	MD5: 752f4c41d66bdfe8c53a6fcc2f529103 SHA1: 8bb1bf6bad71b944cdbcc26485883c015be8047a SHA256: ae042db7bc163dc6ffea109ecec88f3f6b8fcba7fc5e1fb39e68f35fc1f91b9c SSDeep: 384:gKd6PiGm9fmJnX3gfc1QKVVcO/zyaPHCCRgqBiLWU5sy9HXS2DxJBMHDePNc6d:gKwPippmJnnFQkm7IHCC6LWU53DkHDeF ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\5ugmzBnJys-rOcLEHK.jpg	MD5: 5e491a27a02a8d2c1b39158bfcfcb1ad SHA1: 91be23f312df690e48fb5e0607321ec0448fc324 SHA256: 8bc8293a84be3a7f25005581f4f07f09ca30ae47365b7a59400a042384b6b5f4 SSDeep: 1536:PIbnmyTPnFH7WnEzQ21DYzVKX33DObRgCY6s5icaXAVry2mz/4bV+:QmSPFH76Y7RYpKX33yFY6s7Drh75+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\6D_3i63CyKTA.bmp	MD5: 4473adfccf41682358cba5f2c4ed6a94 SHA1: 4e3a6efb2eb3e1d77398a71f70cc6dcd5a932dd6 SHA256: b9f15ff9291a4c30679f7e369d5ae6d657ed1498af276b3c7f259d66b8e90371 SSDeep: 96:fsBXEiCg3mIoKBmIXlY81bVYWzXRNO9kyMnzMpPhf:IC4+381ZY+zLyfx ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\KAYKzmSLN.bmp	MD5: 30837aa9035fbf5452e88198eb95efe1 SHA1: 55a04b42c6a2fbb0fca42298fbfda8b9985a5588 SHA256: 9f5988e0992f661e5d31937e8c846eb02ca66293b45ffc3ab6e3f5ea84203861 SSDeep: 96:c5mMrVQYtN/FZMzH5AvkXkDuBBmuGfyjpaARGN7eRQrtq:GtJtNHMLK6Iuq5g4Aa7Y4M ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\WxLYTXoAy1YslFDMb0H.png	MD5: 49a1d601b40a20ef8042f8ce682eb7c6 SHA1: 3047791a8738e292ba48b1f8aa31d718f537f9d0 SHA256: 55977b1d5bf29cff066c6fae5fa3eb00252f45d89d53c8b6c8c1bf1747d425c5 SSDeep: 1536:jDm05f58PK9sGoETUME4RZJz9VdhZ5h+SprregeT06Y72RUfSHKTrK:mPIoMFRbnLjr6gM06vK6KTrK ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\il9ZK5-Hrw.jpg	MD5: 4241afed634da76471b6b806ff93624a SHA1: 932d950d8b40fd3892d38163f557dcd2413a012b SHA256: 4fca1b048a8abbc80a86a8fdafa7f9af847bd9c161e5eee46ba2937c538a6ede SSDeep: 192:qVY8sBBwFmdBEzTfHOSkcgMk0ElinMi50FG5r8jytQQr87ymCcs3+6whVUM:qgBwcd+zTkUk7wtZ5r8Ot5513+h2M ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\jGX8exTTasoF4.bmp	MD5: 052b5fa8663bb5f3968e57ccb8447f2c SHA1: c2db14ba7c41c3736395a1114e8d31fe7297f2ae SHA256: 8e351744eb01b452558f974d4b3e2ef450511f6b8a0488f30531b673ab02d564 SSDeep: 768:8TRLyg1069dYrIAzJGHD3R097nMeu72Ah4ElbVAZ:8UgG6oXcH7invACOba ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\k- FY_KLVjDdr.gif	MD5: d04da1ef936fedc13fb05c8ecb5c8c2e SHA1: 193e283fb9b10e31b822284f26067aeef1ae33dc SHA256: 5af9c2f8faf5d2f3136b77419915f9ff00c0a42268d288c537b054eab4179b07 SSDeep: 768:zvyZVVqxSf5DCXAvD9ssPEcORzSikWnzG0xRyf6lLM64HA/UDcMQdbWAAHC2rbqI:zvkqkuQN8cONkMG0Bh/UDctdbOHC2jth ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\ltraUM.png	MD5: 789aebaa0ef3a2039d5936e69dda11f4 SHA1: 52de7e0d114d62fabc14098d597687d9b8b5645c SHA256: dd197fdade680f6e542a6a62dc17557931c753aa1453ffeea3d4e2b9db77f2ea SSDeep: 192:Y7hPKax9TFhAzpRVOKHTl9vFUfEMHDc4un8FsxQLrLsI:Y7hPKax9TFhE/0K3FilHI4un8FSy3 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\H rETdZpNCxZiyix.jpg	MD5: 0bb9a621feba56e735e0cfe31c1f0dbe SHA1: a98b488cc8f24bd7a4134b2a9ebc8a280d0d7ccd SHA256: fd2a4d2adfddb12c701242292fd01b60fd99bf4f9ab013467839614849792d69 SSDeep: 1536:ETzpBbwbJSOXexb8YmvdKHP26Uc7rl8Pf7ACR5/:OzpaF5XexIrvdsPgc+PfL5/ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\R_aLDxI--zaqsM0.jpg	MD5: d1e283acc87e5d65b2ce3221b1608fd0 SHA1: 37300397b8c3f3eb85b98d2f2ac36b72e9392e71 SHA256: 791b546ae936100b8e064eda7b60839002cb378b1cc775bf2b873dc05c6db9f8 SSDeep: 768:pYuIF8FgtoRB1wglgcHdDvUdS6ZF4nP2V7uHaf/ISmhsHIaRuBmH:cFhOB6glgwxvySIo+06+xaRuBmH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\X55YkSvWHYx.png	MD5: f063f93b48c1e6974cbc421a30a1f0ff SHA1: a461c7ff793f50fba8f5fb007a169bd2158d55b7 SHA256: 009b5d521262caa4f2ef96ba5c3a8f13261b49483956c7ebfaf7678865fbf05c SSDeep: 384:rJxijgqGpmS5NVa9Rgd9dOzhspvIzmH9CaD+W4LU0wmdc7YIAfX:MgqGpmoNVORg9dOzhsVI84wmO71AfX ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\kWJIUzWXrzXqyBJ_.bmp	MD5: 460ba9da693645253719f78ed861ba45 SHA1: 9542231f3bf8d79ed10993e343691fca39994a2c SHA256: e4dc1ccf8552099f19e768fe44af6bc94fdd51dd04676bdd42c83e0d37bdd2ba SSDeep: 768:dMjETO3RFn2xSK2qjLbARvKBjFbTS3wr1Uf7wfAC/mkt9Na2C3CfNWetx3:d2Ea3RtCLMoFN1Uf7An/mo9ZC32tT ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\oYnhF7jjLMo4MYEMc.png	MD5: 8b0eb07c3d378ca51db101ff09c9940b SHA1: 26e6c176f118057fc2107e4f7660bc8816583170 SHA256: 580097dcd959b8985749fcff8b3869c252de750b3ae1951af1c3b485a0fde528 SSDeep: 384:FLAWUhL4cru4AzDOZPg/Z6+dH/ncdt6SeQnj/WchTXYFsrmqVy7etPO:FLih5ru3kg/Z6+dH/cdt6Semj/5XYo6 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\07LKGqlUvDd3rdk0.avi	MD5: e37877ecba8005b66f295f5ee50766f6 SHA1: 89f26bec61e6d2f1370833d8a4c6c5e7309832f2 SHA256: 7a76f293529a8a76ac1cb1c6f8527ff8fef9db2ff82d72c81dc9fec166cc94ed SSDeep: 1536:vrah9zU6fHZ/3O/4ZHJjg9huz/UJquAxZOPU4KW05DGy++1R3niDEIreUO:MC6/B3O/YNq88couZG41PIBO ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\9Z bHz.swf	MD5: 0a2f2c3b2104f9243f9f3c531dc99294 SHA1: 3dba860ed52feffebc4d30ca195e1296a61ab92a SHA256: 65aeef2aaec192bf21f19466141f688025e480dea61ee9a9325c231623b930c9 SSDeep: 192:g3eqRjMfZqmqirDrSdTzet7NGs6UoZcHHcyjm:gu7xqXc7+UoZcn3jm ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\BHvmegf--VJhdfxMW5.mkv	MD5: 507ba8a47a07b6b0de4071f34e962434 SHA1: a4dce74cfc47be9a9db39a37bd9b3450e11941ec SHA256: 932dfbbc516bbafe66640d24680fb3d4ec2ea33d18b1bde31b1bee5a97951ff0 SSDeep: 1536:TKPjoiPAfZTMoI0wYR8k2Wpno8w2G5Z4e0W6C3bGmRpzo:T9ckZTMJ0nCk5o87YKe0W6C3bGQo ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\I3Q-NQ-b.mkv	MD5: cd91e01ab8d7052a8ce7b760294f7854 SHA1: 715180a9cc9f2d91157cecc9d9b0a481d55c3771 SHA256: ec5ab6926284f5b0daadf5a0e633b61bf4315ce6d0488a549e43e4a68dc85b2a SSDeep: 1536:caueus8+h3OG6vNgQo1FY3v8WPLKCZQoCet+KI/t+GZO:yeFv6NEFY3vlP+Oget6V+CO ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\LPNHujbo7.flv	MD5: 62fc7d09980706f7456a1fbe44376b27 SHA1: cb85e492eced9e6ef4e9574d91ee075eb29f26ad SHA256: d2e71cd0d52c26a13dae2957885bef8e471eb3593ec437f46e562ef411290903 SSDeep: 1536:M92fPzkZu0N1WPRuxbLsysJ7QZBYUVVfPwgAgupg94XiB8kPHLbeXTcofKbksI:uiPmuc1MRwFsoOUYXhKGyBlPHWX4oIS ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\LPk-XAXk-zcc6.flv	MD5: d63a647991382cca1851e26ef26192b7 SHA1: 8044feed9a24f82ec30498f441287adeaa001cd0 SHA256: b24a6feca6873624f1badaa996cc8df4084b9ba26d0861a836809c3b0ae31c50 SSDeep: 1536:fcw0/qIk8bWVsdoaYnIi6g5wY+M467wlNN1bAiHX0ifP+bk17c:fcwlBk0s9YIVm9+M4DlNkiJ6 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\OyfV5 iV5L3aLTKdy1FG.swf	MD5: 2bb86a050c1cdd7e7ba6936ff920f146 SHA1: b488a69d79d2adae0e825c9132d989b535b88c84 SHA256: a3064805e690e0783587f3a6c25460859ca21d780349993b354f80c2cbedc5b1 SSDeep: 768:eKBZISxY5WazknhShJGQTXQQoofS768klvnRtdaGwJovvr8BdM1B4hHYAwf:eKBC5WQknhSD5TAHNklvdUoX4cB4Yf ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\P2_bWcO132my2U-GwQ6.mkv	MD5: 0fa38903fb67c4c3cce4a8a451e8e53d SHA1: d084f1fdf951364b7d7492c85cd5321ad10ce04f SHA256: 463ae329ff5f0f72242ebe72826351ee3e6a8af5714dca74dbadd2a97d1e6b2d SSDeep: 768:eEw1mSZnm1Wl2piK2jNsV5lD0UdUopyhicVN9U2VPVBCCF9YldC22qNhOMlehAx9:edk1Wl24K8NmrDZKnEc5U2VnCCqC7VRS ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\Rc317_O.flv	MD5: 33324a5d3e1d45b70efdc86eefe0015c SHA1: fdbac06a6f3c9be5a66829497edd156816c56f9f SHA256: a8f8ec40c4ec53598df37519e80f8cbf67958d0f8b5e83cac39bdc8683436031 SSDeep: 384:3GLt6FtXp15i9LG2Ogp0vc/hnD6I9wDD6/jXKK+75dDjFrQ03FGWj41lTAKqXm3:3fFtA9LG2iYDwDDSXX+FdDxrQWj4zMXS ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\UhZbJoCx_ElfPUlH30A.swf	MD5: 0849882e3d25b41e5668e0cfb000e798 SHA1: c9d24d4d9730f75d58424917a745921d22555dd8 SHA256: 541a14e2d7a831effbbd020e9c9c9026eccd9842f476228a97ed66a670675fe6 SSDeep: 1536:6+057SaXN1LmZJliJz6OD14E3HV+H7R9C5oNd4i0cYyYA0KM1JBLBDVNv7kejhky:6+0xzdA4OOGE3V+bR9C5kKiBzYA0LfB7 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\VqGxYN5.flv	MD5: 2a8ae3bb833c92818344bbf4cd85c45d SHA1: 21da9a44ceda4178ea0ad57765a80001d3648d5c SHA256: f3ba000bc731c65e99251a73cc6828a2101ba2ac2f1a1bea9d095a8fbe2bb4c7 SSDeep: 192:z7IzfZUe/NE4OsgZys62MUD7NAJpJ55vheqqI9BooCbN:zMz+e/us0yspBDZA95y4oNbN ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\WLlslyldTTX.avi	MD5: cdd669ecd901e2594225fbf9aeed82c8 SHA1: 0e63dc300abfa800c5fc43968aa29b0e098f37d3 SHA256: 5cf38809d56463429b0a68d5536e730fb5379b308249f84473c29c035abc6d20 SSDeep: 1536:w0mdbyyCZb62qNA7r9DEtFVIgAzhF9mbGYjFAe2tNfiBf3D9bVVs:w0mdby962qBUgAVF4S672rf6vVs ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\iJe a2W.avi	MD5: bcffc1a7cec59534436feabec8fb0578 SHA1: 373f6c2289f2673fa80ff648c44906dc0f901fc2 SHA256: 0f96520717f2475c1c80d23c7cba2c5fbae874e39d2f30b735cb8c2585a684fe SSDeep: 768:13eXwxssS64V6LDMKfF28An0bFOYWm7iOz3zqikte7rXmN3cRWBwO67UAYWRKOVb:15SFYLDMAyn6WO1zpUeLPO1AYWTJR ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\nIx7_sMdrHpfn.flv	MD5: 09aa7bab674a7daf6a4ef55d59c296be SHA1: 523649c4ed9cd4c9e4e509e55de10dabf0c5f092 SHA256: 35ba965d106db017ac23bde37eb55d74158fdbba2690a27599d7924fca99cc5d SSDeep: 1536:Oj2jCJJdwuVNO2+VAKetLQ6vJCrfuYyHr3Ptr:42jCJcu+BVpO58mYyZr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\tjsnLloeJl4l2.flv	MD5: d8bda1633f669d617cfc9976c4ab96c4 SHA1: 164b8916adbe5742f8ed21f2f2db57fdcf5d94b9 SHA256: bf13e1ef1a89f056efcc9776c669efdde1a3506f180f14ba902b414043597a88 SSDeep: 1536:OgybWRzKm4/fCShtzqP+5jldOOlgEIp036g+u7wxse7KeGfUIftw9j6WVDea+roB:FyKVSHC40P+JlXIU6gIPnG3fu9jTgIki ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrSecUpd10111.msp.NEPHILIM	MD5: 097365adaee69d202c69062f96102c5b SHA1: add65fcc19e6fa81ba617674f53e689e0c281f86 SHA256: 3a9574d565da9e39062f30517bfebc51afc1815e861d489cf7c7475cfc2972da SSDeep: 6144:xErOT159g2JiKn2HpCjwk9XPZsY9bGe1nj3rZ0w:xEG5gD0wYXPCwGEnR0w ImpHash: -	Access, Create, Delete	Dropped File	Unknown
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrUpd10116_MUI.msp.NEPHILIM	MD5: e00229bfe81e8d89c9f5811770e12827 SHA1: 8451e4d11b024f54f066ee4656bd0895b2c5d97f SHA256: d10e880d49200565ce4520fe722dd59df37b69e83281277079e3e7c2c81f8f82 SSDeep: 196608:mMjzyOui6r+Qo4iT6YqQitS7+KgxUzGVw9vV+Ud5CP46ZjNK:JN67xdBISxUzGVw7+YMggK ImpHash: -	Access, Create, Delete	Dropped File	Unknown
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_CValidator.H1D.NEPHILIM	MD5: 10bc88d8db256f15de43347391c0d24b SHA1: f260d8da576fbb090ea0ef1036b95575928d2433 SHA256: c3565fe14740d4d80fc043cd014f23ad508397a8303015fdcda289f21e9090c4 SSDeep: 192:nREvojvW0H0+UVIO0yubX4zMrurZClbtv+RC2QaJg4Sb4xfaJlMc0dVVKKW5l98d:2Q3Hj2YM1FCl5GRtzg4PSJl0PVR692 ImpHash: -	Access, Create, Delete	Modified File	Unknown
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MValidator.Lck.NEPHILIM	MD5: 305b0aa6e61fd01fbab7578d4958cd45 SHA1: a619a260dc6385b514ba8ab6e408b95d97eee87c SHA256: 9d34be9a6b72343cb75703052fde98e16682a7324135fa3c376e8e62425f4baa SSDeep: 12:zym89zQYUNAagiTSfSOeIiutQmFpYdJyfhYeGG65gmKuqLYsmh:mDzYAaMSOe9+pYdJp46/Kuqi ImpHash: -	Access, Create, Delete	Modified File	Unknown
C:\Users\All Users\Microsoft\MF\Active.GRL.NEPHILIM	MD5: 43dd3b0f528d2bebdd0c926607a83e53 SHA1: ec625267afa19cd1e33c438bf4b0b76a1c2c6226 SHA256: ef7eb460ad2cf403f2cbbf3b36aa8ceb50cbc030619358618d0c887c60c842c5 SSDeep: 384:XS26tpshvtjKDicPM3uQAfoX9aVbkQyFxp7ihhHAvBj:itsh1jKDJM3uQSotaZyFX7sHAvBj ImpHash: -	Access, Create, Delete	Modified File	Unknown
C:\Users\All Users\Microsoft\MF\Pending.GRL.NEPHILIM	MD5: 20d61646da3c546081f9e0f2ed8ac551 SHA1: d7808dac41b5e4abd1534243482f14cc250fbaae SHA256: 89eb42d5f6705f174b46c39f5f1728af818e2b8d56d0dcbfc5632db71bdea252 SSDeep: 384:LI68ZwEX4pQsepHKTfLQnMpQnkrPj8hiy7/vnL3+JdLz+jlN:Ll4wEX4pQOTLpQkrPj8QyrvnL3AejlN ImpHash: -	Access, Create, Delete	Modified File	Unknown
C:\Users\All Users\Microsoft\Network\Downloader\qmgr0.dat.NEPHILIM	MD5: 4245cc2f4c41a19cddf319364c60b951 SHA1: a076e55733dae354647c45e649adb76f7c49dbab SHA256: 4e40a9faefa6d0d86b00b93e730466c0ca5311bf1b4f92b2bdc310a805c56616 SSDeep: 12288:BiTz3X2uyqSwKF4eID07N5O9zhZlXNkI29eg5xdGAWrnvjo/iCozHDB7:8X29qWKtmpL53BWrStovB7 ImpHash: -	Access, Create, Delete	Dropped File	Unknown
C:\Users\All Users\Microsoft\OFFICE\AssetLibrary.ico.NEPHILIM	MD5: c9edd1bc0b8479e5e8cecea22d9d2702 SHA1: 2777a8b8c41239c671519fd1a1877f25a830f362 SHA256: 849fe51b32fc23996e9953346dd7442a7ec25215c1351814564f442bae856370 SSDeep: 96:CA/uouLGdYWejJFEMth9oCZV5hNEXfRW2UgAjREOiVlbNKnjubI+SrYsXj43wcDY:LwL6t8IabocV5h+PRW2UzR/G8qgrrT42 ImpHash: -	Access, Create, Delete	Dropped File	Unknown
C:\Users\All Users\Microsoft\OFFICE\MySite.ico.NEPHILIM	MD5: ef01c05066b1e777c2b066014c0537b6 SHA1: 6d4e18f5879d2714ef555c09d6aec400af27bd54 SHA256: a862c86fafbd61df771db7beab4602e784691ba20635b9894c9cd656e8951323 SSDeep: 768:p3vFL1R7X3ZKmQ89zpP6/WsXxhIxuiaJH:VvBzZK8d54WMhIxjaV ImpHash: -	Access, Create, Delete	Dropped File	Unknown
C:\Users\All Users\Microsoft\OFFICE\SharePointPortalSite.ico.NEPHILIM	MD5: 9823a1cbfef3eb28f5605208ae118e0a SHA1: a4ee6eca24338812c1708b66f98b392e6f1e3ea5 SHA256: 65771e21f2f40305b420800d3962b67f944b894db972b366147b68764a50b067 SSDeep: 384:RpUHgQAZ5dhe5kBCmkGtrfCCW6TRgxUoo6e2Wdtg4pyRNyqS9jygifPm0S7581e:ogXdELKTPW06xUooZdxq+jygiNr4 ImpHash: -	Access, Create, Delete	Modified File	Unknown
C:\Boot\BCD.LOG1	MD5: e747697bff73701ebd9d003b41d94e7a SHA1: e74232f5b76b339c8545196d8d0263cd43633d46 SHA256: 47e410fabd530fe0cff45988be3d2fd78aefd802629c46a552761c186c036dc7 SSDeep: 12:BsXTS8ynAOVi695sLuMTGJcRM8uWNhfYIj7iT3AtUHRMKeg+T3WQcqAi2J:H80AOVi69eLu38bfp2rAUH67T3WSE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Boot\BCD.LOG2	MD5: 06a3a6119906ee960d2ac0a3748f8ca2 SHA1: 5e4bafeda410251c59ad0ca112a87d9b8476538c SHA256: 2c8662288ca741bcd3659e14597e02807d10c68e1478e397e850be8d29c2f9fd SSDeep: 12:vvppf8PrTq13fu3jOGXoOQytJ11WTeW1Gkydb5Bv1oITQq:ZN8DTq1GamozytpkeKGh5B6Ut ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Boot\BOOTSTAT.DAT	MD5: e9a5cd92454644f7afca01c5ccfd5586 SHA1: 1d16a8174d277e8990c54e091632443c643a2956 SHA256: e2449e57e4c42fd54347cdff45d031d8efd6c455d6e37361f87332cd1bd57019 SSDeep: 1536:Z0LqaIAzwOajJEDi+47Ybv/IRmPmcgF7gDTVt+DDRyqr0P:OLrSEuhY/z5U7gDTVtWboP ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\PowerPointMUI.xml	MD5: 81f175f17ae17984ed729ce6a031c54c SHA1: fb1e7cf1643aeeb671d0b6eaef8644aac0edc070 SHA256: ed35a3db2fa3cfbf8d7d9224ef67bb01942200820966d1e2597059509878e806 SSDeep: 48:HYgFgBWM7QFPpF13K5hWquSePOGRvSkFhA3jfEf6+QqBD6QnI:H/gxQ1pFlK9ezNfgFPiD3I ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\PublisherMUI.xml	MD5: cccde227f1f2188cbd4a3a811a79f662 SHA1: d67b86c5e261295e39a388599c4c19f722d4442b SHA256: d18bd5c4c7b9154db8bb7068338e3706359a181c4a59acabbbd86c88b7a14aaf SSDeep: 48:eL5Ew2gaGkmRYVmgyFqR07O7ZmMHJZwvJbW:e/2gFyVbyFK8wMRW ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\OutlookMUI.xml	MD5: 40bdaee857f1086bd453d06cb9aaa421 SHA1: 3567debfe9e5701854e522be9424999762774c87 SHA256: 1e11c6f9506021280a3ac30037341cac06fa8880c928919d3415ad4ae479a280 SSDeep: 96:AKmlVwNIfsVGg1C6B5g/CxxoxV8HHN3cj3bw9K6gp:A/VsIkVpw6OCxxYEt83bjV ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\WordMUI.xml	MD5: f76766c1f24bc67406c295f02e5b6d76 SHA1: 0479a2db06ac3128349f890180e59e44e5da74d7 SHA256: 2236752d5bedda2b67f521775b4c3be863f5c2b645e46b8d74bd92215383f15e SSDeep: 48:JIdcoh2kei05xBA9o2m2rDtiqRkk23WFUzu/+62rYjO6WkAVHH5aWl/:JjohF0i9zIqVUzuGPrYjO6WNVHZaWF ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.en\Proof.xml	MD5: aa278db976797e3528413f1b01042d66 SHA1: 0001bab5a242eb4ab41aa74d8cd01c4e72fbe68a SHA256: 1a9ee1bb2c9f60af2cbd494dd6869324a6c60bcc53cf810bb3a0082de7f5ce30 SSDeep: 48:waVQTtE1GDupKNr1VdlsNk8PG/6v7/2jlhHY4sc+AMoVa:ByToGjfMm1/NhB/c ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 2ecd790159d54e706b5490c881dc8896 SHA1: c09f19d189505f655003784125a96975c7b28e9e SHA256: ef7d119b56fd44f0e918775836a2a0050af866cd966a449dc3532f5871f7981d SSDeep: 192:Auv+v1LQq8PDkEnIF1F1FfMh5JNjAU2W3Mc70hb0Nb:Po1LQqVEnIF1F1tmAUBWb0Nb ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-0043-0409-1000-0000000FF1CE}-C\Office32MUI.xml	MD5: 3085d2c32af78029e2a67332256acd79 SHA1: 2d1fb2e8434d2f2ed41ccbbd0d384eebd1d11103 SHA256: ad55d16907dfb9774b424379de4ddbc868156366dd0b0a2073f0dfda1e3d2199 SSDeep: 48:IcVX9lhQtRKicEn8pKG1tpX79JjmxjigmfW069UplzJ:/jlMwicEn8oGrpL9JjmhhmO04UplzJ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0043-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 4b2d182694f970cf13cddd8aa4ad9d96 SHA1: 64432b2c75ea4593a2c13b5602ed15883a339211 SHA256: 3738c74553adb30c7038424ccd717413ae9346eca60cfaec733e3c70fd7852b6 SSDeep: 48:q3zgfJq7BcPAjI07SDK+UT+TRd3sZJdnVGCoAfyB6J8paF1A0A5m7DEo4Cynzm:qzuGo07SmIT4GCoAfBOY1hvEgQC ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0044-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 95ca95729d5e3d77018b980538016f21 SHA1: 4f6dc9002285dd2e7829de40593d228a6b6941ac SHA256: 044fadf1d2f0ebc546cf9a3245848631c538ba3abe30953980c46207d04993c2 SSDeep: 48:TkXCLt8KQIFqAFAiFOBtdbvzWJ3B+5ehDx7/WdnkAlIzVjQjGj8s42tq:BLtJoAFAbJzDshlbcxqXq ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0054-0409-1000-0000000FF1CE}-C\VisioMUI.xml	MD5: 5c20f72d77e5fedf95e672b377bdc4c4 SHA1: b723d3d4c3df7e7a468e07362c8aa1893e1be180 SHA256: fa39de3910e2958b5fc43793e4ede0f97f6190a4290d310be6b72b4da43a8fac SSDeep: 192:JNSXNg2K1bz2S2nYa9vJpD0dXAcFhJ4WSoQdFLJHmbuM:6dLZSkYwLYrko0FRmqM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-00A1-0409-1000-0000000FF1CE}-C\OneNoteMUI.xml	MD5: 57c099cbb0655dcf83f9cefcf6fa6650 SHA1: fbe7e6fc6580e48b8a1a6074e4f89bf6de2a2b63 SHA256: 7670791a25b4d448caa8f9217926b34056c87e42ed281d226cb47d3ee3d33891 SSDeep: 48:3GIluwmBzMzsUT9CkEhFhIVyj94LCHzrPOkwTfAi5oaSU43wgSOH:3flzUzpUT9CkIFhIVITrPe4i5iH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-00B4-0409-1000-0000000FF1CE}-C\ProjectMUI.xml	MD5: 4c7f9bb6ffa80d0aa530c1c790024055 SHA1: 5e6551675b0ef1b0c3c0858a2d756e30e6eb8ed1 SHA256: 8368539b17e759bdd501ab7c383f373d7be2f9af11e0eed001be5a3b00ff6390 SSDeep: 48:Un4cDGXStkhL3oLWd0yArfICFUpL9bsfotnsm2tTNqF9Rs5onTLB:UnfDGXSKhL3PUkbswSPVGs5onR ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-00BA-0409-1000-0000000FF1CE}-C\GrooveMUI.xml	MD5: d4e69cac81197a3b2dde23a60b01c9b5 SHA1: 346d921a22ad37c19e75a70d91a84ad42731c3bf SHA256: fc4b6bc748357acc7cc91a93dfa600957efd9cf56466a08e3afc7c23f15ac032 SSDeep: 24:l9gqP8PA9SCXlW1CCYDkso6sYIERdU01NOtrQv/pLjAU8KCNmiAMOxgDgYOJ:laqPZ6cCYYs2YIIYUvFjmpMivvOJ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-00BA-0409-1000-0000000FF1CE}-C\Setup.xml	MD5: 351027e6a49a60fc1d694fa7a7f0145d SHA1: 5462df9c30fabad54374eacf681aca71dc3bb829 SHA256: fd06b95848cda91fcfa36b29643e5eb5e8464cda1f4b421021aa5e11cd598357 SSDeep: 48:ReoZScrAr1WppEGrjITu0TmO/byBwwVOeR9Jo28cTq0kAcUsh+XdBaRU00Z:NAvGXmRyO/9wVOQ9JoQ3x9se0i ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\ShellUI.MST	MD5: b906bc34b7d86205c4faac44fae43cf3 SHA1: d9c3e80f2a3a778d89656f19592cebb2f7c6a801 SHA256: b97040fe0983c9680d84fe236766d70bd00116822cf46c93c1b718c1c866b540 SSDeep: 96:l7kFI3kv3v1ZvqxoH2Ohd1YYEqHo5tilyen:l7kFIg3fixI2OhrYYfKqf ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\setup.chm	MD5: c90f1448c236db20472b628e17f1fd6f SHA1: fe81d7d4cdd432b2418341017621cc4dbba9a540 SHA256: f0adf1f746f543d3013f6ea5b8d9102b07380dcca87e602300880f5ec349a290 SSDeep: 1536:1woafKO8M6sAUOOgoM1wOoawl+0MdeQXlAKmDTnMMzdO8QrHWcJ4h:190RLM1wOojMdeQXLmDT5Od2cJ+ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Access.en-us\AccessMUI.xml	MD5: 2d67398c856123bb0a5e6e3260c0a188 SHA1: e188ea4a55070ef6df902b7e586bee84f7f244ba SHA256: f6b6e80ac2b96f17cd05d13c21370984ee2794df465075fb219b6323c8a09604 SSDeep: 48:bvMlCjDpi5CYfntQu5ihlie9QBUswMMyaUQvaELIr:bUAZi1fnmuaIwUfQy8Ir ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\Office32WW.xml	MD5: 98ac241bdbc9f6fc5cdfe57f5b4c6b3e SHA1: a5cbdcb655dd31fd491f66a1384fb9208141a0e8 SHA256: 3160a6e3057604f7c7b5dd8cb4882f84b54e2dad755541917e8fbb18934f4c37 SSDeep: 96:/kfVzYlS2dOgpAAdIgcvltvJwCf3nprZrue8ZMpG6IR+pW:sNsVdO4HuNvfBGMpGz+pW ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\ProPlusrWW.xml	MD5: 48841a3a423dd2627710586035dd559b SHA1: a7c4acc4d3cae2a056830ccf27a799363dc0e89c SHA256: 4b1f8d43a3a499aad93a64ac9218f6e5dd6f05f6dfc180a8264365b3d19f9c84 SSDeep: 384:U5MswgaC1WfXhtea5Nz8GSZxO75yznH717gz6NFmJLriDcP20zZON:oM7gl1abUGSZxA5ubELriDU26wN ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\Setup.xml	MD5: 58361cc7c5f9f2d47fbaf6e63b14e52d SHA1: 88a4aeb3eec5eb683119fd8534420880ae92ed0d SHA256: 331892329bc7751b2eaec9f42e227c69688c1a4af8dc628be13c121d6277ef29 SSDeep: 768:+tsgTM8f1w20hEosVL8jWNBgiXT/uMpBcr1WiIKck/DNf:+tPM8f1Z6Eo6kOBgcbPY2FkRf ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\pkeyconfig-office.xrm-ms	MD5: f812b65b8568145920e2785bad4cc636 SHA1: 022293bd771ef6435914e858cc63e2e75dc2d307 SHA256: 9fed59e7c596155813adff2f2cc9b9a210d84f3e826063db38c9cf9e6dfbf0f9 SSDeep: 12288:wD84Pumo4usF1m0P3lZG3cqAjUtle8WMxQ4JDL6toKRvAHGbgo/PwhMQDHCF+fCn:wQ8VLuTg1ZG31Amo3aQ4Jy3Dbn/ohMQO ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\Office32WW.xml	MD5: 3f26aa8cdcc718c74ff964c6f8580f6f SHA1: c8ea8f67e74a232073c650c1728cb4b92ca5ff49 SHA256: 2f38d80d683879431e6b695bac56cdf922a5ff0ba895b0927e09b16b367c26e6 SSDeep: 96:Pq0Zf/Wz80liVZBGeDdaWMFRtCIcXAXKATp5ap+UsITnK:Ptf/WzzlqDQWyRtlcwZmFjK ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\pkeyconfig-office.xrm-ms	MD5: 86522bb46a414df1f66bfa0094c6632e SHA1: acd0d08db6bf5b7b2e1227e6819f828f59d6b49e SHA256: 99492746190ec78c4904bb3daccc1d05f3ce1625ec4072c92fac727321a2006f SSDeep: 12288:OwZJvn/1mK9DuvPt/cjP4DCWk/kFNZqMiVHrBTB8HN6esA3nm51YFBLLt3j:O+huv1AQDxk/YN+VH9TesA3oop ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\Setup.xml	MD5: 60e789c0e3221ee192a1c909cf9ef5e1 SHA1: 2fe15f06d9d6c2ad9a7448570c66a6a57195e451 SHA256: ff8a8f9f2c929ac937dadc7b9fa67c580fcfb86582d690b02af1e5c1560492b8 SSDeep: 384:NJ24vKlaVbueWheO3VxFxQJBgCBCsxK2iwrJyPCWTeJKTiXNh+nkCx1N8kBHltBJ:OgTwe8ZeBgCBDxBiwlyPCWT59kCnXBHj ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\VisiorWW.xml	MD5: b56dc2a68bb3d6d202bf949143062623 SHA1: 312bdf13a326d88f5b5ecb718f93d11c07c754cb SHA256: 1e33905573de0fcfff7295b50600194cb6c5c80f61d3b902999d43b9b40b7d90 SSDeep: 192:IoT9720zNIZ+/lacKDAanbiMok4V37xyvPNr+xAi0YvrPkoVB/e0JEO:ZAov/lCPnuMo5h7QnAKK7L3bJl ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\asdlfk poopvy.contact	MD5: 063e7c13d665399604adbef97f416e88 SHA1: 599a53888921a0f425815eca033c8c10f0e8bcc0 SHA256: ded47ba19624c39bb27187d1d7449735904eca57b291480e42fa76ba2ce7435a SSDeep: 48:+S6fr1nqo7MflLQEcqKAqmo8jRh1B7qy1:D0hn4L9cqKAt/1Rqy1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\chucu jadnvk.contact	MD5: b8734dc883cc04031ee5d195291a673c SHA1: fa5606b22667c1dec5fc9f3e053dc1acd75123dc SHA256: b27a8c1fe7329b2749f5b04c23286705e0fb1d36618b0c0aadee21bc7eccee84 SSDeep: 24:Mp6KcxZOxF8/6Lq2Twy53YftOWZJ0ZhygXVMJk+k2aodbbUhMm8udl:MpbjO2mftbZJkhpMJxaodbYVHH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Contacts\lulcit amkdfe.contact	MD5: fc2955de6ebff441ca17c6f1441098af SHA1: 9905d3ab9f3166f96e047dc3db61c04d6214e049 SHA256: 41a8b35beea7ace2e1b3419146283c337abc08146e58b1e45503912914e67715 SSDeep: 24:cfd9MeCMHM3xLFBVN4szzuSz+0mhulfdA6Rslx4zeXK+xqXzoUTyZ+VCnO2mc6mv:cl4dxZBVgS/VltRYY+x2zg+fo ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\-eRoGn44FLd7nVa_qp.swf	MD5: 88a28dfdbe8915d3e1e909a5f2a0eb8b SHA1: 6fe469ec8609375bcf0a414b8999f8f4cde618e1 SHA256: 48a7c41a4719b05888dd6f890b07ac475f35f21cac6aed4cb7fd5a47f7f97012 SSDeep: 192:EVupoipmArtE1Dax5gLHnxj0fcjKJEvqz+XGYrwC0O2q6fJTBEjDfNC:E0EArtsAgLnxwkdvI+tU7OZOJ6f1C ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\2EdVR2BdL_UJ_Tb.wav	MD5: 4dee23c714f92a7209b2d3f48f84afe9 SHA1: d89b9ac1146ec98256e4c67fc499c4c48aa7b00d SHA256: 7abdc28164ffa442d7ba04717aa57711c8935135fb58e56d547618840e567a00 SSDeep: 1536:2UDg9eb//jhisoQNS1OzVw9UM1pjrN1Hr2kd7zX9pDiirxzm9:2/kfNS1Ozu5jrN1Hr2kd7vxzm9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\5gGooh5YlZqE-cuHf7.ppt	MD5: 85d61bdd6bded12448ba8576b5059359 SHA1: b542b6f40f52c40cfc74751ee6916b8d16218ab6 SHA256: b250a8a0a5930cd8ea53223341db954c5c204772adf4a5a173806a561c6b130c SSDeep: 384:UjfGQPhv0dEj4IUBtr4+0Bw5j3fq2JZOnkeQO2eMFL7W3CIz4vj3pE:k5WEMIGrX6Qj3i8ZOnSP7WmE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\9NiLQvf6.png	MD5: ab6a94052ae7e29680361774f2296ace SHA1: 14851983203104a9d4db857e15fa3f00df058664 SHA256: 07dd83aa698172bd46baea555be54acf5db9da843c62c74fa22379bc069b7afb SSDeep: 1536:Q9rD+/w0UCIS86nLlNXFOdcB++VSdtKsQ:QRC/wA84L3X6c8SSDKsQ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\-4 E8t.gif	MD5: 7d395e3fdae18ded02d1f6bf2d1b2a84 SHA1: ee818393626fb51c1963c3b9ad741b2f77b902f2 SHA256: daa61006ce5e0331a7494d05cd35ae70cfad826b1e54d71f230de3e28f8b4588 SSDeep: 768:98pEJ1hgAzpM467v8mWkJ3l5WRxp7DvwtxHUv3UTLFrXFZh/q/Qaroggg0d6SnSc:98pEJ1iAe7j8t83l5WvwQUTLXvHaroII ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\MUTXgqR7U X4H.pps	MD5: 6274291698c1a654aa42f4cebb638bb6 SHA1: 7ea8b4f2df68054fdb11503a36608137c8d82bfb SHA256: caf7baef6f8e539afff8db18782cdfdb1044c26cb573a94ca5105c173a4789b2 SSDeep: 384:sFTNrYe5UC1QXkCkO6U2XdMfODhgc3P0NUtgCI54L8imUQI7aWjNpoYT:wNUCeXkftcO2GqqJIi2UQwaKl ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\blyObdpvqdZs GX.odp	MD5: 4ba6e12d30279e7b4c95db094a0525a4 SHA1: d444d79fba62b998acfc17eb2373c565513ca2c6 SHA256: 011dc8d1c5f066adcb476a4aa52cd818a6c7c296a8495085eaf2b6f67597e02b SSDeep: 384:8F7ga9AQpmdBZ6+yNSn003nf4kkOySHVS/Kr9S8zCfydjafIpAm83CEId:IMa9Zm7yw0WgkV8ASoefIpq3Id ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\1Ggrolu.m4a	MD5: 363a40747eabb4fa48942481e4295de1 SHA1: 41915a95ce04136deae76cac0df851f88312ee66 SHA256: a0cbb3316100969edb9ebe82b16337cdff1d062cbbafdf0697d7dd3c5f65decd SSDeep: 384:dsUENBej4YRZeC+qqC5PeC2ItKCZqspJaxz4gpPP5EU3b/PG+CJFgw7ExBg+:dsUENBehA8F72gJKz4gp35b3joN7EH ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\3 dCejF0.bmp	MD5: 3a6bcfd7a47594ce4251a11f46b43680 SHA1: 1ce4fe796bf3f9f5445b057ddb5d8da5510b9d23 SHA256: 25b11f60a8883322bad041edb2374eb1d764e24b10f1c2b8bfeb9d9f44f8e6a9 SSDeep: 768:7Zuo0FR26O4fzEvU2ceDkr1kzLwROOT7l+Ss1gAxYKaUFlz7V8spPwhi7ftc7P:Fuo0DdOygcVYMXEb11xYK3lvVjp4A0 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\DuLgLrKLZzvMA8zkvh51.m4a	MD5: 536d713b5bc6c28144000a3bab507730 SHA1: 47f9cd116cc3f09934921f5c41b176fce3ec49f8 SHA256: 12c49cbaac35d61e7ccfd89d97af751a0da976e8382b3f9c915cbc0c3f059daa SSDeep: 1536:kfWwjH6VEIrX0DD+TCpo/ye/Xh0AwWaMjWmu+sO:VprXnCpo3/Xh0AwWZqmu1O ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\_FTV DAHnCvzZz4gyY.png	MD5: 7ad64cf2125a0def7e358022a5b8a1b9 SHA1: 857f4079d7dd865e2d53074ac2bdaf5dacb90e49 SHA256: c913ee36ff3c01bd4ee2ab0bc91ee540730f88baa79be97b94abffe7977a0bbc SSDeep: 768:IHcteQeAkRF7xl/OzvIOxw7SGk5Sz75CnR/u9QELdwPB69qR:bFkRxv/Obzxw8SInR/uOELcBKS ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\bqgDuyQBRz9\vJaeefq21JE0D1c.m4a	MD5: 6a80ec9d964c69a8a9b0fda2273bb028 SHA1: 78da3bdc2f7d2ed094a11e95b90968389ded2b1b SHA256: 1411b342d388870d1de63abf7be71653aba1c6ece07c0105712b661a73b4773f SSDeep: 768:lcmqMcVSbEZIKCYAEgNOGDoL24DG9kacwNCu0YR:+XdSYCP1EgNOGD2u1CuJR ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\EK1PloBl6twa\fGcTTu5.avi	MD5: 800549b6d289fcfb445ee0302dbc84f3 SHA1: e83341ef4efdb97fff12e3a6d5d4751d785715d4 SHA256: 6dd48eac9b34f62bc013ec1a551d93e68bc398be10ea95f5be9ae9197b694dbc SSDeep: 1536:8a6PKysOv4GC3T3Xmiegb2DZFUFmAvLBZwwOgBhsxiIKuUDIt:8xPcy4GiTmih2XU8AvC4hsxiIK9A ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\RxAavaqz2_z.odt	MD5: dd288e40ec2e0b7ac17b3095fd6fdbd9 SHA1: 68b998e551b6b6b5b4df121924cb5e721a603568 SHA256: 6da6f4ed180e130ed036dbe661b28d9c24a192bb2952ce0c7c6653baa9fb0616 SSDeep: 768:Z4kFyzKss/pIXVa2EGMn9nlmd3H/8NBvQUoC0l0S:Z4QoBshOVaI1dXGdS ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\XLRKCqo3.png	MD5: a11d36e0513e390965d3b863ac93c068 SHA1: 251fdc0f10957ba8ec0954a37b5e3c697a6177be SHA256: 51d5ef4c48458abcc5c708b1629b27353cbba1623d538ebe3290b0a22f5b8140 SSDeep: 1536:QgAthfRhwdlIPSTigKgekKD1NA4iGCl7t4+3SkbR59wNr3oL:EhphcwSTigyRbiHV++CkbR5YU ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\Zpj5SmV8mS_BQW.m4a	MD5: 76b98bc96831ee3a509471445e178f37 SHA1: 4083ed3de592633379664314abcac5ee0ded8bc0 SHA256: 068fea88778a81cbb890a165ed98e391afbe5f28e30d5196300fa6acb5d91a89 SSDeep: 768:N2aeqOoioK672atm7JSEQ1qOcREPbkMwWhjsq0pBPgBR4GfkrI:gnoK67m7JSMxREPlwWhQq0pBPgBRxkc ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\hGwQTJ18XX9LQhvrOhr4.gif	MD5: c6023e82010c2eb6fef87678ddc1af04 SHA1: 0f295f0de1960e94aa4cf66a085924afc6130473 SHA256: 37f51c3d4b51c82e8d8ef73ec51f498e0aeb16feb4f0d67c4f0607386e6c02d8 SSDeep: 192:QrBi+EPioLqiD2Ah+aWH8HrMc8NCF0C0PJaJDz4Uyw//+gSaXPtJLKokRc:IyrLqiDfAarMJqx4JQzSwn7So/H4c ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\jYb8h7NZa.xlsx	MD5: 0c741033ce5ea0a092b441ef89d1b89f SHA1: 93a470a07d400e8072bd211ca168426bf13989db SHA256: 64c92d412a6f49ae2fb3d8ad627a4ab7be6f12ef4584be327384b96fbb7b2660 SSDeep: 768:Qrwr416MdPH1kUyasnMatsFOO5QdNWZm7Fq2hnU712ga+upMw04EZ7:Qrwrc6kPVk1MatsFOO5QdnY1WMw0N7 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\viJbrbj2QoktEF6cu9K.pps	MD5: a46bcd2c4d9d9ba8db1a8f6d63cdc131 SHA1: d4ac543fbad9475fc16dad1215e27eb7622e71bd SHA256: 85b413490d49939f54f6579d580ff4d7aefef7ad180c22331e6a797679173a4a SSDeep: 1536:yKSIyhS1xbmqrBRJA6ELIH+Adw6XXbpo05HID4eAHUI1:y8yhSfCSARUN+UVo054DAH31 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\zddpcY.flv	MD5: fe52aaedc5d5bb5d652f0cf754e0837f SHA1: 32cbb037e90d00804f406783fb889a3fb51f19e2 SHA256: a3472fadb3cc4cce32d0b7fc5e3c0ef34d850c173b5f28aa7ba7ac6bc94ea3d4 SSDeep: 768:DSgiPpSZVyUT8Di49pmct+dYXklZsytff1msyfATASt7KO3cwNXqx7sfYETX9xjm:WPpW3ADi47ECEFosNrKO33kwfvNxK5Kg ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\-SC6MV5eTF3.csv	MD5: 62f0bacab9a03eab7e339e36b58089c1 SHA1: 0fb281578330962f1770f5b151d6f1497f998ffc SHA256: 69f2507903e877e85ffa169fb9ed45fe10756541dfec4ecb0b447075c253e4b9 SSDeep: 768:Or1MCC0HJo/tO4TgwsTCZezC6v39TiP9GzUbdwgAxnE3ny6gbb8eMZLac9gms7PL:yOlO4Tgwse8rvN+wzqagARCyVbNc9gdL ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\CTwx4Cqt.pptx	MD5: 23b3c964345f25544ee480581dabad9c SHA1: 22ec038ef6342dcec6d51835298b91e2b444e73c SHA256: ac4fcc0899b4a3333da0fac7a17e41b1a69413c0888d3aecc877d54f17e80ee4 SSDeep: 768:IUP1lyAAnNJ8QTuTS+bizscVXh9BZ9VhTFhtCw9:flyAAnLuTS+4scVRl9HLtt9 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\KTm9Oa0kRuLE49QF.pptx	MD5: 5d2485dfc11d5de3f22873393e3fb6b8 SHA1: 15e48553ab14e3e6e030f521e0c56444d7545a02 SHA256: 2be49dc46a99e2b6e8537d9c5e1bdf3702123361bec58df51d6dabb139ca64a3 SSDeep: 1536:z7Ed4u/RqWzHvX6JEVdyjr9s0oOlEYPbJuQm:tu5qWzPX6JEKjm0oqN9uB ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\RpcZuWKqTIoEmC-7XzPq.csv	MD5: 50f719261b3374b990139314d89b374c SHA1: 5cdaf381bf263a5713e8fdbde1aeffacec07ff36 SHA256: 75a85839d0e6f590e5e3f2b75935db3e729f515ce9868c092b081de04c7be214 SSDeep: 192:rj39xC1nm3x+wFfi/NMa+z9h+KV9CnJ3IxpYTDR0ONRJC7T9CtmRTAy7GOOys:rL6axtyiVUIgHXM7TbpAAEH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\UNdkbVtnLslvox.csv	MD5: 04765c79d0100784f6fe8c7cf26cb251 SHA1: 8b9f15d1f7dcec723dafd5ac00fcd19b878d8cbe SHA256: 271e861eb14c52bbe0c745ffed0763f82e5d563b93fd02b1ffb3134943fe6ced SSDeep: 1536:PLdpYsvQnb8akWXTHza8SHGqjXhrzJFyZ3jAF5pb0FxuiU9Dqw1yOuoDgXk9wwPu:P5pYsskWjHzvsxj1JQZzAF5t0FxugUnM ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\6W5gI.csv	MD5: 313bdade38d4c46889506f6e2fc45559 SHA1: 7df0e08b6b056006c2d58eb2e602b3a730ff029a SHA256: 5f2c477d887bd7a136794380a197f1deab32c816743e7cecdc57ccddc9eb6685 SSDeep: 1536:AZAaJQFM3lW6M2yH2LPIDW/H58c9KMZmPR0W+Y8WGzEKEyevV8cVeWz:cAdFUfyH2LADW/H6NGQbGzEoevtVz ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\HK56cudxP vZ9.csv	MD5: 4feb042cc72274c283728109a75d9d4a SHA1: 6effce299ddddfd31c9fc22a01bced9ec37eff61 SHA256: b52132c07ea41491b5720bb19d527c9d4ec8e95ce277b767dd0e4f90ba459555 SSDeep: 1536:/BO930dV8ijK0z7JZkMGII5ovl1sOeKWKrHcyeyRp:5O+Xf/KCsgjNjRp ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\PL0_s7sccV.pptx	MD5: a6300612037c3476dbae902e82c97aa3 SHA1: d0ba24f40d25ed6900abcbed687cc5954c7f9251 SHA256: 81b30cc0548ef34fbde16f9fd6eeeb4ed6821c8de28c57b7fb7c774dcd08ab49 SSDeep: 1536:y++rJI0V5STgeh5sf0/XEUYC3aaLQtM4rY8+:y++rjV5SR5sfNUYC3BLQtMG+ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\4pymoj9sP.docx	MD5: ccbee73de0ea526443c0992d1ca73b52 SHA1: c8ad6af2b37c055b539db64926511a54450f4160 SHA256: 4c19398632183a80a51bfecd7c736df063f016349ad0db8e771837bde8e78713 SSDeep: 768:ycy7cGJZaKS7CWW0NIeszo5klE9XU8mtDRCtyUK8U6ZCXeKl200rJ5KZRFJ38gvP:HfGfQ7CIN3sflgxZXBkw5KbFJbqPs ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\9B-2P.xls	MD5: a8172313fbaf66f125d3288f3c4d2bcd SHA1: 945fa9a1b78f1ac4b17c22f9dda6e7f0f8fda187 SHA256: 3a2b5ede3b20991db5c1f064ebff092723991c93fd55385619666b7356d794c9 SSDeep: 1536:kN0GM4ote95IIpL0L5M5TID9MDCJAtnNVgdjKjaHYei5LmWcefNjFtpOr1BEZS/m:kNmYIIp4L5ikDeKAtnNvmIQGFtpOTqjp ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\Rf87NKFT\oAwRVtH56Okwzg.xls	MD5: e9fa41db6fff0c6276f7bf9ad641830d SHA1: 30cc3e125851ca721fdbe6be2d32abac0367289d SHA256: 0dfc189ff218da9590b5351831736f00e4ad149d156fa85ef63fdeb289d47643 SSDeep: 1536:7aIF6mQNAo4EwkpKxys74x1I1RtCabdojXL6+S+e:7jZQNt4Jk071d8XLO+e ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\dV-HSrMn.ods	MD5: 7f66ed402b831be61daa9c78a1672d4d SHA1: 767e26bbde08c64abec66cda151516bea714a0ae SHA256: 76779b7195b5a0a88d32b089ba565269f1601f0b99322aa034ad2d6aee6903fa SSDeep: 1536:AzcKneKXpmHSP5HBMyGgu7OKEhk82NBxT6WcfC00OBP6aiMXnZsCnp1XR8:AoSXPhHBMyGggFEhkrBJqC00OViKnSWi ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\do1sBE.xlsx	MD5: 0c40e95c002edbd17390948b8b554ded SHA1: cee089bb17e6edcb8be274aa04a3717c451dbf65 SHA256: 65d6bc9ac5ccd2489c82b54349bc2cbd27ff3c987a4b62469990ba22d84e696f SSDeep: 384:pIm/4CJ7ueQFxve7LFXwax/u2P1cXjY1dpywWF7l6/zbSQV/FQDslZ:ppzJXQve7dwaxG2P1cXjYV5WFJ63TF+4 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\X5140S3Luj8ic32Dytgg\wFtusCdv0.odt	MD5: d89c320488a234139fe08bd9852f1837 SHA1: 94d070c4dc8f9e0f3a61fd3e86848bf049a39dfc SHA256: 8ef6c4e58ef5a8581da5f539dfda46dccf170b9982a966db59adff036be8d8e9 SSDeep: 96:TA8nToQzCgKoi+3S+hdfJpzCEHI2hji0EgeAEYuxr22g5Uf:TA6Et+/lpz9XA8N9W9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\ZPw3gPQ4dX2oz9KXEQL5.docx	MD5: f0cf10ac9f500c9b94ecdd210c3f31ea SHA1: 6c30c978d6eb2e646786bfea27c6ed0b32ece1dc SHA256: bbd9398449f5ceabfd312626d3c47a85de419e2edbe2b55ed8f6e348421aad16 SSDeep: 192:Gc3rh1ogpr/8/ZbLqh5FlnIi3Z9/quU06J+6vAOI6PEHL71PTssjXZCC:Gar/8MhXxIGa9PccI6POLhPZ7Zl ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\e6d1Jkz wG7c.docx	MD5: 06d762aabe11cfac7f3a45dd0210409f SHA1: 72d4f28a60d94030f2b2709ddda4d31312888ea1 SHA256: 721114d75ebc675b8165cc037ad6f24ed39f7aa42935296d7c2752bd46f0876d SSDeep: 768:JHc6Ha9RmPyHXugUooDRPjs7S69IRcj4C6Kmu:J8XRR3uxooFPI0G16Kj ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\r19wgUh2G_a.xlsx	MD5: 1f21af115a01fd038c2dfb14d17f7268 SHA1: 050fd126eddb67b54239354e16c36480f473188a SHA256: c7b185ab511b55a30140f814b69f91c13f0123d585b615eec1b7cdef2fe32528 SSDeep: 1536:erBjTTLvQ+xQRlYU0L/ZL2/k6JVper09HacvItp4VRlzYwNZUkXRByxRIpZIL0M:erBj8mQRlY/jEs6JC0JacvIt+bl/ZUkk ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\taV1q.docx	MD5: 023f1b140a87bb23f1c6e744471b60da SHA1: fd43aaad4bccd58744cc97b406d0b1b1b6cfcd0b SHA256: 69d75f404d474a52adf356876ac500d4c3d71b672107185767d58129ca6a6d1b SSDeep: 768:LChxyzXJbb7H7Rz+GycEq64byoEjFjO0YfqPU:exy7+Ee4XEjFi0J8 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\wovmA.docx	MD5: 14f1cb6b683ed3b6277d5164608b953a SHA1: 32e66581672248776b010c9c141ba36734487cf5 SHA256: 4285bf4bb5bf6ef2fb287068832cae545050b013d97b257b2b286670b5c00b61 SSDeep: 768:ZIMW+a1/gcmG7gc704Ne7SnZsH3hZA1BPMKPH+8lsIsZe16ylvs4Box:ZI8a6cmG0sFni41xM4H+8lRs0Hlvsoox ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Documents\xuUTvNixNZQ9.xlsx	MD5: 8a1341b46da52ec1121f749fdd47f119 SHA1: fe869d857eae1e91638e96ce9c9ecf2580bad0e6 SHA256: 9b6acf38e0fa7422780fd1c7817973a18cd8914c8663bb5a535dc23dc51c7047 SSDeep: 1536:ias1Axi9ptfSSGPCjbGsv91BkQ/C5D6I0VaX/e3ZJnc4Ub5YLt1GulJLfOpKAweB:iaUUS3Bv3/tIj/6Ub5W5vmvGQ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\OCpJ_5bxkAc1Z.wav	MD5: f9c9241fa9228189fae2bbae29e026d0 SHA1: 0b3eeb7e0ff6f3d46488a81af1ad9c305a23a83e SHA256: 1b155e6b72964bc8c3492cd041a8cb48d94ee8a189044b61d97d3aca26b5651c SSDeep: 384:hHBEgbUa/r6B8N2Um+6AOOcct8HTpthEOEkpVMr3f:hhuaDVm+6mtCTThIrv ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\GC6ETPphsGdG.wav	MD5: 90115fecdade07719a87c907b0fcc037 SHA1: 9dcc5cc5e25dc588ea0479ad4aca72d6327e3fbf SHA256: 573278d106261a318133f1f9dc5fa45c774139cbff6fb25c7e34bb84f279dd84 SSDeep: 1536:Mu9szOD+7SKJly90v9JIeAOnYoq59O+b3Zx8L:MylSK89JIDOYoqdb3/8L ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\NAfcIR.wav	MD5: 451bde50c7f6d2f5e9db7dae49db0190 SHA1: 3460bbc4dbb4c911bfc2714b2bc309b2ea18e043 SHA256: c59ba73df80aade106789372f67fdd82c3dfe2a94e3c9ec52d648b8ea468f2f9 SSDeep: 384:kiNvix2XFjG6R9q8MWptPx/Nz9biZOutyQNT97mM7lW06QOZzACVtHjkK6ISH+B+:kiNSAKCvpnT0O2D7mMg0v6VtHj3s5J ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\SMnF6e.m4a	MD5: 51bf6069684f1ddbe114c211a1cc746d SHA1: 1b31a0b3e6f763c4323c50267978d755c761e56f SHA256: 99e34b7e37196260e681ef23cc943ad7f3ff9bb6706f77b8f5fcc2a905b22954 SSDeep: 1536:PRca7MLEr7iU0BLtqglmOGPehaE76CMqEt/wDtOwjroekZvgSzE:PR3M4ruNBLbKeoEeCMqM/VwjceUlE ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\D918ob_hACUbatXR\WxIZyTGHdczfIM.m4a	MD5: ffa95d94dfea1b26fa783e92ffe55191 SHA1: 2ba20005b278d7e85f90e553183d27030e2be36f SHA256: c9763c7ddb542457a299f98689dd274d5f71fbd90c5d319349c76bd348a698e5 SSDeep: 768:WAhk7pBDFEZztfPVRRoLCQCr08JNQiDKr8LFH4yI9u60X7g6nyB3pzfujIhjy:a7pB5EloL7CAwjNLI9lF6yB3pzfygjy ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\UEL4L3jO9WoSQ7Qozz6\RWPm0E.m4a	MD5: c011d848fdef30e6325561593913f7f2 SHA1: da77a4b32e0c1764db19a41a5da22c7e71f14c6e SHA256: 3a7344d4cd06a2c792feaa4ecea8a966c318610961e7945052e7e8329d852f4f SSDeep: 768:AYEo9bT0PPeWQt+IbMoFFJtWXBdJXQ3us09MMLYK7B:AYHVT60FVW/s09MBoB ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Music\ldONxLUYalN.wav	MD5: 401a634d98f73618f44474784c50f071 SHA1: f23c7aeca7d6ee206f960eb7a35837f369bb272b SHA256: 7234953caf0084b941dbc006dcd19e222fdba28d3ddb9623f3a953b6a99baac4 SSDeep: 1536:Il/Pf4tQt8iY0DCaQtDCM8W81gxtMdZmA27sNA6hQIlKFvDk:Il/Pf4Gi026MZ81SCZU7sNAu ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\8twYFrA8egRA4VpVCc.jpg	MD5: 54ff68f10df23c0acac88ef768391c70 SHA1: bbbf5b005472f6ddc7e75955d76a5ac83a02cfe6 SHA256: d3153f3bc7fea323a320c6818711c5542e70817ae5e98b8ca3185a7d685ae39a SSDeep: 1536:1nNXk0tNrDDeIe1ZUnhPn42xccqoliIRzPbailsnAP3EGY3mcuBcSwnBN:zU0rLer1av42xctolfba9AvEJmHByv ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\-XnIV_EaU5WHIey.bmp	MD5: fa167b7f492026a8452ca3751829ef20 SHA1: cdf5de5412c72e481bcc025f8613dd9fef7615fd SHA256: 87da0931174347f0d36436add17b9bbe3f382d28103c5c9a3cd97db1de48c1dc SSDeep: 1536:4SvZR+DYgv9mosy2je4N32BBoqorV5g/SeXrvG2p+21kclshTfJMMju14gjK:9Rtgo9yYe4h2BBar5e7uYrr+bu+u14v ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\XvsJbsiYY_.jpg	MD5: c454a45dfc1db11aace017f33a9968dd SHA1: 07e4c7dc270f3d6190fc22cf38587a9b8879f8cb SHA256: 4a257ca5644fc09d7d4a8ea66efd0ec9b4a9ec7823f0d71b1a700a7bde89b9fe SSDeep: 1536:SF6GYK+Tkt4NNtvLiqMYKlm4qt+vteul97tE/OtUHEd4yiYQl+0F:SFi7HNNtvenYKlm4qAEs7eukEdsYuvF ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\7gVOpP5x4gzk.gif	MD5: d1072f2d839042eb1cedd7566bf3722d SHA1: df1abb615d209f1aa41c67ee35eaf03414ded0f6 SHA256: 69aa4bf99910f2d3d23a38ae0a52012ffdf163b76ded725d0b6b5a5a0eec4bc2 SSDeep: 768:XxD0vEARd43sH0iZcVSuB6yj1R2yequfVzjMKIW2hDyVi4nJvly8wRP:XxD0TRdUsH0ucXYyL3tufJwiAW44vlyT ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\IAIe7hWkMsQcX.bmp	MD5: 85fdc66b61d8196853e3b5373dbfea65 SHA1: 682841b2d2fbfb03ebce8abe1fe69e6d7b3bbc00 SHA256: 1a321ca240d8e645996dc50c05a15c065228bb09d61cf9bcd861ed66b6c74da9 SSDeep: 1536:AJ2oniE1kEHhb7536P875tJqrqLvwIkkwT6xdysuOBiw:AA8YcJ6P875t5LvwIV3yOBz ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\AAq03dS _t6R\woXaBqbokyzl2r\Zoo99HBT.bmp	MD5: 02dbfcfe6f29bb2e199d0b7b0c3c346e SHA1: cc1924b15982180c15225bc120819f052879cd0e SHA256: 077d94df8be1985750fb6e5121d1922aa7c0b6112cfe97216d8ba3ab56e7296e SSDeep: 1536:yQsOCx3Sz9w9yK635HpyYWQv7tCLIhqakOJekqzJs3vtPWm7V2eV:r3NRP35HcYgLVakueFq1n0eV ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\lNQksITpPuLC3wBX3WUY.jpg	MD5: f5896a8de6f033d33bcac08683d20431 SHA1: 007946353d666597ccacf16b3775feaa282552b0 SHA256: 26c159c3e4d314d1fc7653fbce63cd714d9d25c641b18b9832062dea04de59f3 SSDeep: 1536:/4sCYFuZotD0wAOiohMc8+fmuz16p8DsKQAkGAwQ0i39RBrwDkr5:/4sCWuCDbAzz+etplh6AT069RZ55 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Pictures\wh4Za_QMfWN8Y_9OeV.gif	MD5: 0b377b35b8b553cf84f51f8cd4b17350 SHA1: 8d662ed6a06ff359265b12c710f8b328e2b9291d SHA256: c5fd636a808fb258cd402eb1cee8fbd5e9fbf4d0d8f0134a2009ac25c8658cbe SSDeep: 1536:3EWeqw964nToTaCdJGJWBSLImioRrl2Znz+yiBoHoMxiJcpAxgNzE4eA4Y5J1:3EWeqw3EaCFBSLImJRrE6oIMQJhxgv ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\0e_pY5Vcc.swf	MD5: f43004e662b0906ce1e390b252188598 SHA1: 7ff7f5797428a5f4e35dee095434a90b53f28d0b SHA256: 0aa5c3cfc3c19c58de9ce4177aaad31cef631444832344564790923d7702e462 SSDeep: 1536:ApPpkKNLPHpFG9wUOMEyNl3Lv2jl8zyRd2fvqgJ6wc+5XcJye4cG:SdNzHXKljz258zyR4ag3XRe4cG ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\1gKqJ15ibUv3z.flv	MD5: fd6f6b5c816ec93023617f89dc5e81b7 SHA1: c4a29eb9024058103f607838f6cb4ce4b52a430f SHA256: e1c1c20bb090d74f9dbab93b65c088d411644399b36e3edbe6a0bc06bc8533c2 SSDeep: 768:zmkW4pHYeHw1gym2WYIIgHMHy/4I8EOggHUVT0+OjhS55qJiBK27zwk+DauBh+3c:lWEYF1gyDWYFyMH5RaVTIiBv76u3c ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\4YZ71ysbsTtmRB.avi	MD5: b1e6d7568ba1a28c7fbc6a295f48edfb SHA1: 9c1bfc9a16fc0211fec8a0d26c1a4c8847737781 SHA256: 16845d653421c097d1705c89bc0135be47e4f8fc68947146c9a8f975f7e49dbd SSDeep: 1536:OtS3DoRPWTVDOdsScCD9zxGi0EXnCKqOCshbssfi4gZNf:zDUicdBLGiBXQD14if ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\9Eb-_YDs8aEVkG4xN.avi	MD5: e2dccdbc24d942fe7efda9f19cf976ad SHA1: 433bd86850b7f154ee8d6181f6c6e960c1a990f2 SHA256: 0d7555da1ef2e4c83e0f7567d9330da7c3ebb7449dc4b233237081671befe4f1 SSDeep: 1536:8Fa18hxU7OJyGLj1iqxGuCjH8FVmaiN6I3dabjCCtfcp0WgY:84gxU7OkGLjtGsFVan3dabmCxWr ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\KNn9-FpPmi_nrt NaJ.flv	MD5: 074664aaa746456e25f6e2466e106d7d SHA1: 825a82ce5032554d98c5eec0cde671d7975d4faf SHA256: 414f49357f6e4cdbcc41a75a4607bbdcd43529dacf566708025599ae320dc373 SSDeep: 1536:Ed9c9zo3K8czv65/tB/lHFBL8nZM49qR8Z1Y/OO:E/coKfzM/tB/lv6l9qWa ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\XwOu.avi	MD5: 5864f27ccc4e9acc0568d893767b7173 SHA1: 19785bfc140800e9697b9417076883435b3db7a4 SHA256: 2a7448bb8f23a0132b378e9a15271631af8c25e3933d1d4006cab55c13257094 SSDeep: 1536:eNGS8E6O3rBVrm7XtpT+/GUsJ9ZElQLcIjRGDr4bwT3Z7lnLp6I9:eYE73rTrmbtesJeQZjRKmOFFQI9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\bQGYb789IQ0v.swf	MD5: 15b079c6beb93dff6b32c53ee3652e3f SHA1: 2dd79cf825d42f102e2b3b590b070d73f4dd2e62 SHA256: 4a78e27791ad2171105db853561fbf984b9d001b15e9b97ce6fea5232c1d08b5 SSDeep: 192:8VEfd+mKXlztjTeK01tJMa/xnJSss69497qrMeE7UY4fDu1hUCYdDoL4T4qGH:8VEfdG1ztPeK0DJhVJSss6IuIJlhUNCh ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\iGVSRibs-r0ZBuDJPJcf.avi	MD5: b647d295fa76f3cae3b03ebe999f2c2d SHA1: fa2671b620211ea6d7ba513f4ce8c07638bc7695 SHA256: 6aa7db6dfbd120fdb404aae9e6dfe092c70b4896f3cc7ca9c018b833500dc6b3 SSDeep: 1536:NUY5tsqAH/TUzWR0eRLVKYTdoFhv/VqnqtUZGBFxnDNa2hqkcEMz:S2zAfTmWhHDoVUnqGGBFxnDNjri ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\khGDyxsV_OLZUC0JCQ4.mkv	MD5: 659511fa2adc179130e785c7a67d3caf SHA1: 55c8bb5c2f039f07f319186dd23245de8d217e2c SHA256: 55eb0d2ff8e3c5565b02c594c9ff29d47910847b03eb96406f1aa31dda3709d3 SSDeep: 1536:TFPWCkEvqiXa9rQaP9yKjYZ49X0cqWjl0PDZkMRNqyI:pPkniX6QaP9S/wjl0PtREyI ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\mGaqWH9Golx6HWsD.flv	MD5: db38a3c4bc25be98efa921ede4537189 SHA1: 27a0aa2bd8677405484fff529287d36d5030a183 SHA256: 19794cfeb128bdde0f54ca30e66d47d654cca3e8e0a5d3ab0717f0ef27b5e4b4 SSDeep: 1536:ewEjOb2vBvR/4YZZkaP9a0dLWWPW3qqaRe+:ewES8FR/4YFP97RWWO6i+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\5p5NrGJn0jS HALPmcxz\Videos\yhp6kwj.flv	MD5: c0b02c44ce625eb74e94ed05b72adf75 SHA1: cae69b9fa0768a2302f2c4ba3de3fa5ab05da057 SHA256: 16766ee00350eaa2094ffa4aa15db67d5a26d0742cadb2e0d560d3b9e446b803 SSDeep: 768:MHEJ1hD2hESjkZ5kevLDnBgE9D8xek7LeBBVcwid+Y:yEJ1hDJ7DnBgEQ/yLY ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrUpd10110_MUI.msp.NEPHILIM	MD5: dc42d98e3e03de42e88421ea086deb2d SHA1: 40b42788c6e72645a6da304b05731262c27b0bcf SHA256: b740b876fb1e26fa55d1345493a46265607379b6f6963c8054e034e782fbe6b0 SSDeep: 196608:VBQp680fUIyyPHgvDXadSLsS8nQsiAESOsYnwZrja9segf:3QpdkUaovsItAqpnevIu ImpHash: -	Access, Create, Delete	Modified File	Not Queried
C:\Users\All Users\Adobe\Acrobat\10.0\Replicate\Security\directories.acrodata.NEPHILIM	MD5: c30ac6b453c3fc24e02d03602c1ec312 SHA1: 70e09d5da645bb5a854e83ad1649075a520b8e1d SHA256: 3721d14557c954fefd527ebbb952643d03e1822bfe8828cffccee03e1dd7ab2a SSDeep: 24:b9/obmv8/Nily2zA+7gthJ3dn1v868C8I+WPG5SBfC7/iNf4VQEo:as8/NirzOhJ3R9VX+J5S9K/0f4V5o ImpHash: -	Access, Create, Delete	Modified File	Not Queried
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MKWD_AssetId.H1W.NEPHILIM	MD5: 9ec95a5e2b8967819c59281e3f760171 SHA1: 5fe05f0c96ac3547e3e9862f67b4580e3f19cac7 SHA256: 3a189bc5bc65ab4926402113892b04c498c961d3afc9cd964dab893e7c27cfb6 SSDeep: 6144:cdYOgBOlTvMRCLstcptI1gEoNRgtR8bzLk:cdYOgBUTvMgpuqEwQ6s ImpHash: -	Access, Create, Delete	Modified File	Not Queried
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MKWD_BestBet.H1W.NEPHILIM	MD5: 4b96dc4d12d2b43c7aa5600084ab1f59 SHA1: 96a63c2805e204d1ff496c950a38e89d5e95043b SHA256: d8fca4658e2b7dea51a4273856a20727e98756d5dc92070f29d9abd15ce4f235 SSDeep: 6144:qU+GtB93SQI22e09Wm5T28l886vCLShA5jNqe:/xtB992eaX92tkLShOxP ImpHash: -	Access, Create, Delete	Dropped File	Not Queried
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MTOC_help.H1H.NEPHILIM	MD5: 8fc94276eb3f851d44e8ad759cb3c6c5 SHA1: b19a50e94cc8cc4e955150ad3839d6df8665b895 SHA256: 254b602d28c1dc866bd2fdb4e9d9d95c49d9717e908b92aa66835f29f25df64c SSDeep: 12288:0TocgXlMh/4Ppnyur1X+/Rltqv65EzEizklTKq:OoR9r5MMzESkTD ImpHash: -	Access, Create, Delete	Dropped File	Not Queried
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MValidator.H1D.NEPHILIM	MD5: 0393e195d5eacd7981e69631d03de02d SHA1: f8a14ef4c50e31fd5cb368fb92596324698c8088 SHA256: e86df5f6e77c0aca230808adb795aec1d2f34c30bb27a53375a2e5fd38a84011 SSDeep: 192:mwqy+91ZxKh+//nQGu+jbCbPCNyPu9sKFIh/KY9a8tpOFblERjO95usPaIG3dyC8:mwqyo1HKMnK+v/NyGPaDw8tp0jXGF3a ImpHash: -	Access, Create, Delete	Dropped File	Not Queried
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help{9DAA54E8-CD95-4107-8E7F-BA3F24732D95}.H1Q.NEPHILIM	MD5: 1bc1f5b505defaf55590599410daf03b SHA1: bfb677c91078b0e2561f3cbede6fe24cbd487fda SHA256: 28975f7b647c9b9853ee6729fe3f562e20a015841e4ad15bee201aa69de8dd5a SSDeep: 24576:EHJ81HB4L+eLdFFwvGqpINsE9ob5FbFFXbtBHboO:EHJYHBm+efFwvDaCE9obbbFRtpsO ImpHash: -	Access, Create, Delete	Dropped File	Not Queried
C:\Users\All Users\Microsoft\Network\Downloader\qmgr1.dat.NEPHILIM	MD5: e1bca7a06045d6fb9cfa7e17c976254f SHA1: 2b95fc7a752b585acf67f1e342e0db7022e128d5 SHA256: 55a92f35419f199dffb6b969d9ba82e5006b4f7651e37073d3a8a4fe24464018 SSDeep: 12288:O6LpBPiYxjXNpNc8xacw6lXQAm372t+JonZTBM4kVGPMfEVYEyXN:OcTb6x3SAD3FIZ64qGP7yXN ImpHash: -	Access, Create, Delete	Modified File	Not Queried
C:\Users\All Users\Microsoft\OFFICE\DocumentRepository.ico.NEPHILIM	MD5: 9ad54e542370f38cc08d2628dd589302 SHA1: 16641bfdee30bc6d5607ed1ad7679a736b8938bc SHA256: e270ccf6eb10fefae343ce5d432ab29544a6cfb74c63330e66627df22dc8364b SSDeep: 384:GZ/hjGwmNNq6M6hDRyZe/w9l7kYJBBkff29vspFxbTaq4OSFlVQ7M6qSWl:Q/Nb6dRUeo9loSBqff2aYGXu ImpHash: -	Access, Create, Delete	Modified File	Not Queried
C:\Users\All Users\Microsoft\OFFICE\MySharePoints.ico.NEPHILIM	MD5: f8e5e726696b116a315047788d4c9f08 SHA1: c2fa109e999c6c2083f172fcf4e0d5f8961ea926 SHA256: d3ca93dbd82276bee93d256c3c0bee97b16416c50c6eca40500b1be5b4b94bf3 SSDeep: 6144:Hqcjf0gK1VMLHjnw/+pa4W6k10vN2imjOF4Y/PcdVkjj9EL0Z7LycEWPwF:Xf0gdTjk+pagS6AimjoGxL0Z7LycEB ImpHash: -	Access, Create, Delete	Dropped File	Not Queried
C:\Boot\BCD	-	Access		Not Available
C:\Boot\cs-CZ\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\da-DK\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\de-DE\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\el-GR\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\en-US\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\en-US\memtest.exe.mui	-	Access		Not Available
C:\Boot\es-ES\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\fi-FI\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\fr-FR\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\hu-HU\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\it-IT\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\ja-JP\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\ko-KR\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\nb-NO\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\nl-NL\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\pl-PL\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\pt-BR\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\pt-PT\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\ru-RU\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\sv-SE\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\tr-TR\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\zh-CN\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\zh-HK\bootmgr.exe.mui	-	Access		Not Available
C:\Boot\zh-TW\bootmgr.exe.mui	-	Access		Not Available
C:\NEPHILIM-DECRYPT.txt	-	Access, Create, Write		Not Available
C:\Users\5P5NRG~1\AppData\Local\Temp\\god.jpg	-	Access, Create, Write		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\Searches\Everywhere.search-ms	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\Searches\Indexed Locations.search-ms	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\ntuser.dat.LOG1	-	Access		Not Available
C:\Users\5p5NrGJn0jS HALPmcxz\ntuser.dat.LOG2	-	Access		Not Available
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrSecUpd10111.msp	-	Access, Read, Write		Not Available
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrUpd10110_MUI.msp	-	Access, Read, Write		Not Available
C:\Users\All Users\Adobe\ARM\Reader_10.0.0\AdbeRdrUpd10116_MUI.msp	-	Access, Read, Write		Not Available
C:\Users\All Users\Adobe\Acrobat\10.0\Replicate\Security\directories.acrodata	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\Hx.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\Hx.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.EXCEL.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.EXCEL.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.EXCEL.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.EXCEL.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.GRAPH.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.GRAPH.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.GROOVE.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.GROOVE.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.INFOPATH.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.INFOPATH.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.INFOPATHEDITOR.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.INFOPATHEDITOR.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSACCESS.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSACCESS.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSACCESS.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSACCESS.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSOUC.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSOUC.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSPUB.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSPUB.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSPUB.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSPUB.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.MSTORE.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.MSTORE.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.OIS.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.OIS.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.ONENOTE.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.ONENOTE.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.OUTLOOK.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.OUTLOOK.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.OUTLOOK.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.OUTLOOK.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.POWERPNT.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.POWERPNT.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.POWERPNT.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.POWERPNT.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.SETLANG.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.SETLANG.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.SHAPESHEET.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO.SHAPESHEET.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO_PRM.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO_PRM.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO_STD.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.VISIO_STD.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.WINPROJ.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.WINPROJ.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.WINPROJ.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.WINPROJ.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.WINWORD.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.WINWORD.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\MS.WINWORD.DEV.14.1033.hxn	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\MS.WINWORD.DEV.14.1033.hxn.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft Help\nslist.hxl	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft Help\nslist.hxl.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_CValidator.H1D	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MKWD_AssetId.H1W	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MKWD_BestBet.H1W	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MTOC_help.H1H	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MValidator.H1D	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help_MValidator.Lck	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Assistance\Client\1.0\en-US\Help{9DAA54E8-CD95-4107-8E7F-BA3F24732D95}.H1Q	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{113527a4-45d4-4b6f-b567-97838f1b04b0}\background.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{113527a4-45d4-4b6f-b567-97838f1b04b0}\behavior.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{113527a4-45d4-4b6f-b567-97838f1b04b0}\device.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{113527a4-45d4-4b6f-b567-97838f1b04b0}\overlay.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{113527a4-45d4-4b6f-b567-97838f1b04b0}\superbar.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{8702d817-5aad-4674-9ef3-4d3decd87120}\background.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{8702d817-5aad-4674-9ef3-4d3decd87120}\behavior.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Device\{8702d817-5aad-4674-9ef3-4d3decd87120}\watermark.png	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\en-US\resource.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\folder.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\netfol.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\pictures.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\resource.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\ringtones.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\settings.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\sync.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\tasks.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\wmp.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\en-US\resource.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\folder.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\print_pref.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\print_property.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\print_queue.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\scan_.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\scan_property.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\scan_settings.ico	-	Access		Not Available
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\tasks.xml	-	Access		Not Available
C:\Users\All Users\Microsoft\MF\Active.GRL	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\MF\Pending.GRL	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Network\Downloader\qmgr0.dat	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\Network\Downloader\qmgr1.dat	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\AssetLibrary.ico	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\DocumentRepository.ico	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\MySharePoints.ico	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\MySite.ico	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\SharePointPortalSite.ico	-	Access, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\SharePointTeamSite.ico	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\SharePointTeamSite.ico.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ENVELOPR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ENVELOPR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\GRINTL32.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\GRINTL32.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\GRINTL32.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\GRINTL32.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MAPIR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MAPIR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MOR6INT.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MOR6INT.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MSOINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MSOINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MSOINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\MSOINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OMSINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OMSINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ONINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ONINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ONINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\ONINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLLIBR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLLIBR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLLIBR.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLLIBR.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLWVW.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\OUTLWVW.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PPINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PPINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PPINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PPINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUB6INTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUB6INTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUB6INTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUB6INTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUBWZINT.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\PUBWZINT.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\SGRES.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\SGRES.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\STINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\STINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\VISBRRES.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\VISBRRES.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\VISINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\VISINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\WWINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\WWINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\WWINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\WWINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLINTL32.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLINTL32.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLINTL32.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLINTL32.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLSLICER.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\1036\XLSLICER.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ENVELOPR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ENVELOPR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\GRINTL32.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\GRINTL32.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\GRINTL32.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\GRINTL32.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MAPIR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MAPIR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MOR6INT.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MOR6INT.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MSOINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MSOINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MSOINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\MSOINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OMSINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OMSINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ONINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ONINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ONINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\ONINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLLIBR.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLLIBR.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLLIBR.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLLIBR.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLWVW.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\OUTLWVW.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PPINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PPINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PPINTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PPINTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUB6INTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUB6INTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUB6INTL.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUB6INTL.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUBWZINT.REST.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\PUBWZINT.REST.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\SGRES.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\SGRES.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\STINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\STINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\VISBRRES.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\VISBRRES.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\VISINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\VISINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\WWINTL.DLL.trx_dll	-	Access, Delete, Read, Write		Not Available
C:\Users\All Users\Microsoft\OFFICE\UICaptions\3082\WWINTL.DLL.trx_dll.NEPHILIM	-	Access, Create		Not Available
For performance reasons, the remaining 129 entries are omitted. The remaining entries can be found in ioc_export.txt or ioc_export.json .

Mutex (1)

Mutex Name	Operations
	Access

Export to TXT Export to JSON

Indicators

Before

After