f4ab15b5...6239

File (4107)

»

Filename	Hash	Operations	Category	Severity
C:\Users\FD1HVy\Desktop\somik1.exe	MD5: 041a9629d9ffa0a02de920c2b8a5f6a9 SHA1: 760b08e51258351d1c1eb11897bfdd4e4505d94f SHA256: f4ab15b57698db61a1152e56417dd39ed88eba3ca5b148dada1cec4000566239 SSDeep: 3072:Z6+YM+lmsolAIrRuw+mqv9j1MWLQDChX+s007MTOK+dXk+R6AtR28Ktm:c++lDAABZ08MT3+dXk+j2 ImpHash: f34d5f2d4577ed6d9ceec516c1f5a744	Access	Sample File	Malicious
C:\588bce7c90097ed212\DHtmlHeader.html	MD5: 54d6b553a717b76009478aab7ea2f9f9 SHA1: dbbe2e3b80faf3acae89d46e425f3aa3dd76391e SHA256: cdb12ec5bd2a1e4943436fcbade96056ffa0f51d91eddaf3ba0c61d523186cb8 SSDeep: 384:avuTjP5zNO+g4LVXUvTltkRkvbCsgXk7ouuXCxbynOT:uuTjRzNOwXWTlaRkTCsgXlpXCgnm ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\588bce7c90097ed212\RGB9Rast_x86.msi	MD5: 79ab441391e7e5965fda16efc71b2e44 SHA1: 362e84a5862be3af38d1cac551fdc1e3c025a422 SHA256: 689568f0686ccecf1e2e8895f61003892d9bacca97e7a487ce09a98b991980f0 SSDeep: 1536:TM+/bCaoqdUAl/YgaEmF9ZHIMiEQX99Ngnn5kWX6JFFSo1J7kCnheAiH:TxDCZAl/alQKnnCqoHfJ7HnhniH ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\SetupEngine.dll	MD5: 1c9ef44985a820a280ce42d00c64868e SHA1: 4cc561a167958058ede85869ed89d4c48e9b5aa7 SHA256: 60eed6381ee5d8c1a525d1c74672c36b4a0bc159c2db14cce317751b7be50681 SSDeep: 24576:dq/++iVTLTWjM5Bw2j/1Gb44bWWDQ3+TssjG3U:Q+f3TWjMfJ7ob44bPQ3+TsuG3U ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\SetupUtility.exe	MD5: 9fd6332c603e23a3cc2f5f4117f7b0b3 SHA1: 0d868de46a11fd84286c00469de9dbb608c2915b SHA256: ecb5e8f600307421ae602383540722542ea7ad84c6a2462118ff0c47e1ed6f95 SSDeep: 1536:TLiNXwiQt1OYYzPFFyAtxFoRZXyM1mvgtxAJw4gLZoXkNDdKxoPZ2f4toElYx09q:PZisQFNKRB1mnJw4gLmXqD8uhpto20F ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\SplashScreen.bmp	MD5: c32dde6927806309ef27f0a0e7b08580 SHA1: c06267041f3301612609f6385da628acb16f95a3 SHA256: e9051764f229e2e1f246706546cb78d915aff3c496a62fd96d6639af830c0866 SSDeep: 768:sp2mwTfNxjNsRB4Yw9D4lKE7XwdNvtpdpEF43qMSE0JrH4wqy/rlUifI:sqNxjN8B4Yw9D4Q7pdpE2MCw1FI ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\Windows6.0-KB956250-v6001-x64.msu	MD5: 13046d97ba9f6625a3e1e0bfa207f62a SHA1: 901d7dcaf8ddf1caa09ce9527d35239a172c3900 SHA256: e8dc38d1ccf2f2e16b06c6a2aeaabd6b9d6f84240fcf906327b1c22ab957c79c SSDeep: 98304:6h1aalXdaP7QW0xejD7JzphmsGgmksbV3n0/zCidrhBiLOgwHZ0p:kTl0X0xejhzbmVtksbxny+crhgagwHM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\Windows6.0-KB956250-v6001-x86.msu	MD5: 4f4ae581a0ec0404193e5b11eaed2be1 SHA1: 68622dc9d57ce42b565d054c3f43cdf87ae28264 SHA256: 4e4777fc8c0917512a95e540beb63912edcba7f214c788650b1a51ad615f5dba SSDeep: 49152:ENIvHTwcXZh9VQHz9dCphL/cg48WZC6w9lsp8Zf0:iIvdJhzUyqg4fZCPad ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\Windows6.1-KB958488-v6001-x86.msu	MD5: 7bdcbf02c715e41aa9a56d9104b423c7 SHA1: 42d409917f5b7ba21058e138ca1da3eb4447d831 SHA256: 4597405dcd68bd0c553b208985b2683780d7f36e35deb7c6fa2aa0131dda5480 SSDeep: 49152:ZvVFqw1LW+TNH6f1bi6eUPhnbZXVxY1HwailAmuWcYDLmtC0O:1Lrg+W1YUPhBVxY1tiqVlYnR0O ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\588bce7c90097ed212\header.bmp	MD5: 57ddba8ad6ee6bf34d14855950dd2dce SHA1: 82da55ff5c6528631c4bd16307ace1a0e20aab90 SHA256: 3d03ee8f1f555bdacc4a1ee4dc7b7d6db4d68f0f833d836f3b9ce45fdaeb972a SSDeep: 96:wJFFcJpxUyzr4yawt/W/DUHy1EKrXcboZRy3pgWlij:wJ+pOyHZO7USFskIQj ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\netfx_Core_x64.msi	MD5: 88e49942ead1be88e98c78bef06971f4 SHA1: 1952817f9f9e025faf24806831bbf9bb37b2ba78 SHA256: a8e193f84ad8e20b6bddc7ed80169b279f3ee8728f5b70762f0d76553e1fabae SSDeep: 49152:KiUzt5AOzsR3jHQs8JDJGhnboPSsAdBuWeAkj:KiUkusoD00qsAdkWtkj ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\netfx_Extended_x64.msi	MD5: 5c5bab937d13dae74ea3b692e07a1bae SHA1: d96ec9e7134573d44c4fdbbca1e0b874446c36bd SHA256: 4643f1531d4784e79ae49f6d0bf86634af1500c43887e8c4fc07a7b43c9edbfa SSDeep: 12288:ZolamQl1F9eDT9oc68oc1OFi1DVgGOeO0/d/oAclgdvyvbI9IhmW+mA7A1SRNQlR:Z7lZeVX6Dc1uiwYFgBlsyT8IEZu0C ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\588bce7c90097ed212\sqmapi.dll	MD5: 353c3ac089dd65a71d368e54fc0dcb9a SHA1: 4c49ee0d31c641bff03f991c8f7cfef3f65c8b97 SHA256: 40bc36a5652d737f96008dbf59ebae195a45ed4322fb2854f945611960e36ad9 SSDeep: 3072:Cswk0eQZAcVf0W0njwxsE0hHwnUWw06HprKemTShnuG:CvNeQKUJsE0hQUWw06HprKemuhn1 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\HardwareEvents.evtx	MD5: 8a3be2bbd7fd908fc46a4a40ec2ed5f1 SHA1: 48981744c198b255a9d1f7edaed216a708810823 SHA256: 1d1e15905249f23c9290f2f52f19350ddea7374a3de53d3f1da563de053e8344 SSDeep: 1536:9jyjpo8PkLeCGdJSlPTxtrX/T5NJjdH2Ijd:APkWdJSlPTLTT3Jt ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx	MD5: 3fa7be440fe702d3741f803497afcc8c SHA1: face0b96cbd0e7011c7d7aefb9014383dd18f719 SHA256: 17bf2367d6ced8f348f3c8f527dd153fdaadd5069cd5a8355ba8fcb6c3a32e7f SSDeep: 1536:4Ds4jQFOq1mtX+bUUO6HGDqbfik5/l8UeXS8RHgkdeNC2CuXUwBZcY7+l:41jiOq1Wubz8Cfikf8UeX9HgOOV9ql ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-AppLocker%4MSI and Script.evtx	MD5: b8434404ff79b1381078c8af32a0aad0 SHA1: 71b9ea008ddee6f46cf5599a51617ce46c767c55 SHA256: efee34985447a8c5f73294238c8529b9c5d05310d2b20ba6999849c0e60d9e64 SSDeep: 1536:XAKlBkWidFqhK7Wa0laIldnr/E69XS5m68wIr/2pxhaQm5yem:XvlBOF+XlxrM6l/61IyoWb ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx	MD5: 5b8fe4818b5ba14363a897d4520067ab SHA1: 58a9083cad1a5167b7ff1574c3774b56c222f616 SHA256: 8f8367a35fbd4d072ec77eb8c684257ab75901eced5604dc15e1f492b19dc888 SSDeep: 24576:BnqKd8NV0W7vlRzYrBv92rnYyBjsomlWtMk5QfPCAINcizP:8KuV0/Krn+R1k5u6Bcib ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx	MD5: dd6273554e04d45093fa978d038e7237 SHA1: b75730978afe1b922908c9aeeab41e77bc27dc9c SHA256: 4e68943bf6b4fa3e864f38e08dd9dec2ad2c2d185385a4610335549eca8c147e SSDeep: 768:brAXbbq3VWzW45feJIUf//LnEU0L5vMy0fKpvlYGpa1aMmBxOTfVc2OQduQNpfIQ:XAXb7feTDEUqq7favtEaMmaO2o0pwuZ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx	MD5: 9e016da36a38e8deb82be240de006708 SHA1: 5ea3d6e108b7ba3948ae942d836f92583f200251 SHA256: 4b45ff876859618f6ab2e950f6464393e7bee6e332ce313054ea04c07151e0c4 SSDeep: 49152:9cfJfv2m96xccTL8f5L/ERAhX9WKiJ+DC18RNJjd2d:OxZoxt87EReX9WKiJ+DC1OTB4 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx	MD5: c143941f05153f0aed27f8903a200319 SHA1: 24cb8f8968aaf25e9a868a0945fa2b76064d97c7 SHA256: 11aefeec7c89a0cb4120da89b447a938b27eefd9ed4d80855e8b1c9993780036 SSDeep: 1536:HeQ1hCQ0X5xTUBjeIXLW1dI7+Li3R47AjNgOo6RFD:PAlTUBK8LSdpLeR47ogqt ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx	MD5: 4c7293099802e3c9d23aff1446c4f3e7 SHA1: 8ab341d684430c7631e8a0af88f19fa835bf7ab7 SHA256: a410267441d43b72f00b2533d2a8f3a61031a1ec4dbb76d7162571bf9f10bc63 SSDeep: 1536:fIMl/eqk+Ex3cp0zKHm/POR3QkEmLRT++kVEEzFZDTCt1vej/9Q:f9/eh+U3oHmHOxkmtZkWKHTCW/O ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx	MD5: 5313c1ee97f6e20aa2dbeb11d57a9a6a SHA1: 68fe79336a5625cf9b0d6bc01c9a9b7445191ea8 SHA256: 5598aad998106e3d5ff982caaeec4422f09494501a6d7d31c1cdd31960a8708b SSDeep: 1536:HezW1iO3B9CyFUJV2NGzsD8zzpYkYTZ3ndg7qPgZGCzuIQ6:PxCFJwNGzsDgzpBmZtgCgZGc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx	MD5: 7a32baf9920da9b8e006447ab32ec78f SHA1: c3f5ca9f1d32c3aefaa6f02a91fe8495e521cf53 SHA256: fc6023f9f3b23ca7ee8e8377aa406da7aaad36ce8802764a11326153edf4da18 SSDeep: 24576:DXfvvEv5eW2oHC6OJ7kkdaRsqOc4Z8f0HfkMMI5j:rvGxD0kkdU4Zu0H3Mmj ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx	MD5: 79a3e4cf6f2dc25300243e0f596dc6b8 SHA1: f63aa6632096cbf994a15f8c76d5f31c333f9905 SHA256: ca76292744f108ed96ddb65c16fa03142041dcad9f3af249bd5e8eb10dcace3d SSDeep: 1536:lrmbspdwPGYwAL2cQpEDJ92nRgSos3lS9dfMHH3f1ygDhrQZqm:VmbspSzL2ZuwmqlUdkn3f1yYhrOqm ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx	MD5: 38633aaf76df19878831c611c0cc63bb SHA1: b54430f32cf788f65f9ea8edb9ccdcfe8d7684a9 SHA256: ebb1ba377220c9ee87b7429ce809b67bec87860e2ccc085f3724f2f8d9c3399d SSDeep: 1536:e8TWM2jqUGTAMiAAPupAsvskdF3tOEYo3Z1/fwwiIewOF0:eBqUyAMiAAPuilkhLZfSIeNe ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx	MD5: bf2ff54903f2b4bed12e6733e2d49b94 SHA1: 096ac81516faf8458563d2e08de8129a253cd385 SHA256: 14e168f44dbb542781f389eca6dbfe4e4d0671f3d86011300599e77ac0e6693c SSDeep: 1536:ydifN1ETInIgjQQ+yJFAcoM+orHBCpBqhf1OQIXfkgaSRu:Ue+bgB1oM+oUowzsgVu ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx	MD5: 24bd7e7f39db7bf541eb18e2d4a1b931 SHA1: 412a608334e177a928d15972be4476ab6248cb49 SHA256: 8b615e8bc9e75e24ee86a1851a434e1fc451508bb4b8f92b970525c2fa953a2e SSDeep: 1536:fPQs9wpAtKadky0iMfRRPAbuAuApn3vc9vVzb:f4kwdU0im/IbuAuQc9vV3 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx	MD5: 99f7e18cfdf835b80a69a4cc7d7240d1 SHA1: 9fda84bbdccaf2b30db8892e44a9cf80f21ee5d4 SHA256: 4706666e388e8cdfa0b1e4f64abd2dcffaf5d3c007a9c8fcbb432e471a5e11e8 SSDeep: 24576:QsrSDA9zhK3xkl4ZyKJ51DmaOPyLv1X7zy+qIRLA2K:QsH9lKhkHKJfzOmNzC ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx	MD5: 2991530732f10d3d0cb1edc8e3fd911d SHA1: 7f3e06e1bfddc7be15333c34a5be9331b5cfee99 SHA256: 1d2cb23d2ec94a9354824384de20643d8767335ebab39586d505aa5ff5ae33b6 SSDeep: 1536:fqVXoJqtrqEXDmj+PisZ+DtIE8yQExoxvwBkTIbX/NhJCwLU:f3qNPXDmkij5IomxIBQIjNXbw ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx	MD5: 5ea5c2e19e35d36ce94a2c553da2ec4c SHA1: 7e7f60413feb0e85d483c82c1e266e75ae1462b1 SHA256: 6a49d24aaf19e471353e3c8ba589ba0cb02c09b70542828b6324156e9ab1a075 SSDeep: 1536:IdaZUjWWQRCcD3Irm0o2miJrrOufqcO9LSPXb2A8voPmmOR9qwy:IdyUjYn3z2XwuS5SbtcymFO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-Known Folders API Service.evtx	MD5: ea0dc0b21e148282e39f73a8a9672ae5 SHA1: bbc9325b4c044ad5cdea3851cdf182106ae45b45 SHA256: ec4b470626dfd2d51560118583ba9e3da2d4b5de70b2fae29d20455423a56549 SSDeep: 1536:yd+kXTVsqqtMYJjgVfKAPr0e3UfnjKMGwn+Px+gvwdMgGrWqu:U+STClGm4fKAjL3gnLGX5+gvwdJ1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-LiveId%4Operational.evtx	MD5: a4d702a16f0430f6ab66d62c3e0c9a9b SHA1: 7c5c930f1ba889b9f0ba8a29591a4e4521644cbb SHA256: 92f89fb1e2aa0462b003862749a519ccb62ec419d5b532bfe03bd3b8b7d2b002 SSDeep: 1536:9A0CSvZHwkRG5kj3rizYU8tpDbmQRjZxnMA4mJvWwUqFilFC9P7If:9kmdG5+7iUptZCQJZc/gSFoE ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-MUI%4Operational.evtx	MD5: 1b3301fa86368f48d8ef9e908572cf20 SHA1: 4a17da6cace08b494fca890b580aa55852299dde SHA256: da6113ab04cb09f76979a4aa84bb0beecf37508ff88e677c7cee17908ac84ca9 SSDeep: 1536:wo0p+G2u//F52fWZd1kNn+YxI7pbIPqHQ+rNPpR:NXuHrNyNnZxIvwc ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-Ntfs%4Operational.evtx	MD5: 83b2b13f91f203506f211715028ad72e SHA1: 94706e7df93bc89678b6494db9f95701bd98ab60 SHA256: ad53b02e02d67799e7e89ea5656b818c78a844ba1b70b6d192d01c1d3e7f4262 SSDeep: 1536:c8ph4nvuJjevNUZ3Bc5gvADhiY97HunG5a+gW3CB:cDnvellID5dOOtgW4 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Ntfs%4WHC.evtx	MD5: b382da4d49dcc66fd964f4831f75464d SHA1: 88cd7f9cf680e4316e7be0526169d26bf27edb5f SHA256: f6fdab7722621a130ad884fac638f4cf11172df0dd6900c5127de3d761036f18 SSDeep: 1536:lsQF9Fjn/UQpNa+XykSVM1L/QvI9BydXoIbqaZopVAK4+:lrDMQMO10vI9B4XdbVZAC+ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx	MD5: 13f69e92901a9773cc9bffa5ddf94081 SHA1: 15914b82b7df46c36aa256b88e18adcf1ebda58a SHA256: 3fb628f72dfd1d952cd3c5c82f9889d041e367724c7d550537349cefa55b605e SSDeep: 1536:uqVQxZaRx3RHh9dMEUxrltssRGAVxbMgGpS/HsVuwul9:3LR7i1xl5+Byr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx	MD5: 9dc6914a30aad5338138f48545ab9b23 SHA1: ee0d558c93b0ad4bfba466650c2ca9215d741ce5 SHA256: 61b3e1dd7cc6c927326fc6af47f421604cb264461d6cbe601b1da04f887b47cf SSDeep: 1536:Hek0D/sZ6WCS++kZVjl1GYKWTMd5j8JXuNVZD/XTl2:h0L5S+9nTTyl8puNVZ/l2 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-SMBServer%4Operational.evtx	MD5: b4974fdbc4288358a374a6a357bf40da SHA1: 845eb18930f7bf3a9298dabd5853d00a3a29229c SHA256: 255b383ca13e18366b97567bd23a244bc6ed8ec1ff70a46432d570e30b8bfab3 SSDeep: 1536:ydH12/57KGywGpd7LRogvpr6rzJLUL3BnjacHHXYETMpsX:UH1Owrffqcpr63JLUFjjX16+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-SettingSync%4Debug.evtx	MD5: 7ee811ca25452902494378d4d8e06000 SHA1: d771f1b793f9ca56cefe3bd78b6496558993fd8b SHA256: 85b64d79bdde1b5b645c62c3ffc386cffe2a5ce3cf893d43f17b031ba184b9b4 SSDeep: 24576:8mUolK1QdJdHqv+ZdusKRvL3zb+SSs8asr9mJt2UEa5PhLzfdav+:JO0dKMpQ7zJGXr8J0/aXtav+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx	MD5: fa9b6cc5ef410655bbd6673b8b89ca3b SHA1: b16c2d37dbf3459f9880e73d6b8a5ccfc4c17fc4 SHA256: 0d6620031d022f2cc24f79c1ef747f715f07593d8749fe54a4960ee7a70baa9d SSDeep: 1536:qtQ3jFTUvJM1Y25gC6dsVX24pmJFNKGvoXfgOAcY9u5ZybR:qtQzF+uDudU2rNKLoOAcGu5ZQ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-TWinUI%4Operational.evtx	MD5: 76993e073639c9e5a824e2203725bf13 SHA1: cca0de4b504994fa311e413db1969a4971a24415 SHA256: 9beec830dcdff021d7e76dac884efac25a04f4c105417a8cceba12a3ebfc4ac8 SSDeep: 1536:FaL7VPvYkfOyX2AO2sv+mNC8nwmmZg1LJImmE7AvgYnYMOz:FaLxHYkWy4mvkwmGA9mqXYnY3z ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx	MD5: c3dc3dbab62aecf4bc0c9976de90836d SHA1: f4b11c7bec849f1e8ba507badebf516e14e65205 SHA256: adf660448bfc9c9f4fcb3490c7a32f2f8b96e91b7a9d0ac2878cf8de3a05fba3 SSDeep: 1536:d1kHhZKUsHlW1XNIN+MpmoG6UZMzNoBCKBdTnEjKY5PrqE:MBIXHleN8TNoBCKkJrqE ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx	MD5: adf338d7162519971ab9e9522715a71a SHA1: 248a323ef45ff23a0903cff430f20284134a4b47 SHA256: aec6955dcb2a1c05abd77591b5bf5b066ffc2c55c7c82e10f504d096153078ee SSDeep: 1536:9j0S5/qezobLUPuLNsHrKJNEB28Rfc61G0pWxKdDMAZi:l5OUxgNlyfTo0pHi ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Operational.evtx	MD5: 7ccf41b2f81508d50b519bc6525c7c63 SHA1: f36d444d5aab366eb1c33443c0bd886506bbb318 SHA256: 95cd8cf0143799d9093dc0b1ce7b01c8a792abe3c17a4bf8b4c058bb7d3ba367 SSDeep: 1536:HeHPJSXWnMv5ZkIuOPaWgQAMAUA/9xvLWRYVT3DZK:tGn4kjOynM3AVxvC+x3NK ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx	MD5: f3deb3c50e132d1a06ecd32a91b0f41c SHA1: 1f4c21ceaafe628d05b26f2b513ad58815556abe SHA256: f516a2a6a1424dcc063ebf9d941f52bd7bf977639007a459ca7689eafd40c217 SSDeep: 1536:8TMXnDgicIah9wPnm3W1HmSwZxZ//GA+tj7KihpiapAacg/Cw6VbAPNqEA1H+8mH:c9icT9w+3W1HXkxZ3GA+t/LqgeVaNq70 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx	MD5: 567960d0a0a09d831e655751a400621b SHA1: 74ec9ca87de34dc9ac849d84e7c54ce927718303 SHA256: 5c88bd580d9e97eab42ca1c1e51a4534ae4bf7a0e53db925474b4e39809a2b25 SSDeep: 1536:ydZkZ72Mfxk8U4nI04OdZyv4Aw9Jb0Wi5l65sn/:UG2+SwnkOWvNwLbpWl0sn/ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx	MD5: fe1d5d95d6c935b7698d5ab6f6b26fd4 SHA1: b8e98f05f5040e4202654d3e3194d39843d5bc6e SHA256: 111f96c28b2d786052851332311b71d3520dc108dbb8e569adfde051e9d1769d SSDeep: 24576:wTFR+jV90s/WV8hL+OY4MhgJIh1N/snO+j233Srz1fPH:gR+Dz/bR7Y4Ig8EnO+SSrz1fPH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx	MD5: e42b62e5f723c2996ceb86a47ea84132 SHA1: a571cd45ef8f644e8a781ec7c7dbc99e63c4de9e SHA256: 32fe34e2b8228314c9593623de7bb88bad597bd3be1c39a6560d9b2ec73d8bf6 SSDeep: 1536:hyBoZCddUWX085NVO+opODr90NY8qkMvaE21N/iwepmteQgNk7dxRR3OhAk3WBqw:EBGuUO0oV/ogx0NwQ/XAQB7dR3c3mYyt ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx	MD5: 3dbecc2ea8d03dbc08e5e8ee2c2a69e8 SHA1: c2dadd9177d343c71fa99c6724a37e5949499abf SHA256: 92d185317f2c8e21509d023565f32a0869e9079a92b2df2ffc9bb36dea77f80a SSDeep: 1536:mU+Iv4pwjAzcB144aa15cGGJTZk6tV7puQ+JqakCAy8b/ow/1:mU+wKwj2cs3akbtpyJqsAnDB1 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Logs\Setup.evtx	MD5: df2ebdfecab909044bfd44dc99cfd2b1 SHA1: 7c61fe498fe03885b1a713202078dca17275846c SHA256: d301cc9f45eb44e21bde26b0088cefa7bf38db85f87da3ee96f4db26cd671959 SSDeep: 1536:ydqKAUgTr976KtMkwKRnqpzlDOmUqebTrpxlE7TSww2NT:UqKhgTAK2ktnqZlDOJqebfFEPSwd ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Recovery\ReAgentOld.xml	MD5: be69f0d4c9f8b43e836d14e69328788d SHA1: 5d0646f1efd89602e807ca3ef9857692cfb2331f SHA256: 270fe75310ac81d281eea384ae91d5622ae6b0d2cf02a3685da950469b072442 SSDeep: 24:KCyeErcBipv2UkrSJyHvO2Vw4nN5hSTdW/kTPcS7KLK4d4XTEnbg8rZp:KmQpq+JyPOdUsDpXt4 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\0hOvtnKPB9OiXO52YfO.jpg	MD5: 6c1a12b5c2d63884489160810c800fbd SHA1: 4585348814987d7c6749bc95b244c2151791bd14 SHA256: 50993d3c2e0db8be08912965a381ce9386972a66af3083bcef0acc1ab7554a11 SSDeep: 1536:uCfv+Q3wJ3Y8F/EAHbxNGQxEekx2ThZcIGnTIu8soW2PKD3+5mcYsxsi+Rkrko:PfGQ3wfF/BLG9/21GnsgB24WBii+RXo ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\0j6rJ H91WuZhW.wav	MD5: 3e81e73a9b2d767d6e80d8b1e905cb60 SHA1: 7e279ed3d7b5d409ce40de207d35cf9b9175e852 SHA256: 9ff0167ffc04715d00a5ddcb7b12b3a9f74e3e7fbf1cb0128030cbd374373753 SSDeep: 48:ZoUclWYUWx21W6udLKyT8tM5DVs/WbrwoXchKFHAyT:GKXuFfQM5Js/er7shOH1T ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\49a7_WF9Ju.wav	MD5: 67225a579fee0d752b283d1e56510a46 SHA1: f614fc68bcbb87e59dbd2c53df7f903352b7e913 SHA256: d8b4586546f88dc13a4a8eeac8963c2d5c86db9f26d21ff614ef94f6ddfd3c43 SSDeep: 1536:r7gXUP2uBYI65s4V99Wm6IZc1WIaDwKEbMoKgLu:0ruBYI2s4VXWm6xwMKEbMotu ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\8t60SjbIk0-szSnov.m4a	MD5: 21f220b1d62443383c70c650f57284db SHA1: d168589c4176381df62eee46fd60ff508474bbfe SHA256: 60d42549b820d6e40a030d059588214c40fa5250311731ad90091354134bd133 SSDeep: 384:gQK4rGMfW24aUHiws/ptdPH07BTniMMiMoSnQ/rqkCT9s2qb/stGsiPhkhozSDBW:g39uWza+ZshXPHgxBMo2arqbCd/sN8h3 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\EE9r_4bOM 9sjm8GM8Ue.avi	MD5: 154261eb65bffce22b36b32ad94c9db0 SHA1: f2f845da7836a814b99d43d12d59c5a1fc3b8a0d SHA256: 3df2229570d10925289a566c3c808c89cfd8c8e1672ab255dcaf699ab65d151d SSDeep: 1536:hyBLERBQeA5Ndt+uNp6qm8l2Cv4P9vcwgFVA:h5RKeUNauWn1P9JgFVA ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\KpF-B 3-7sSJYhB.png	MD5: fb395de94685e017b4cfb6fb2ccd2a4c SHA1: f94892ea04bd7a18f8e643f839bd8e1b72b6e419 SHA256: 77b33136267c614c412ada38fd40992a4728cef4bda63ef07e465b7179b601be SSDeep: 192:e64GHP0Alfog6hyMhZAv5hVVLOkscHFxO8p7LoE:wA/62VhOsDLoE ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\O0qvS6.m4a	MD5: a502f67c304c7de05abb8d8d25b50fc8 SHA1: 333dc5ee7bfa8ba2aba6262dee858d74a802feff SHA256: cd937a6c0303f2f22a3d7675fa5ba16945ef57b99b806a7b8930d02ad8bc7e00 SSDeep: 384:gy40Ja3J9Fdy1WmI2Yg1KVt9NMWB51cwpR3xD:gR0IJ9FYd8VRB51p9xD ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\R3L wRQtHi6flsD.wav	MD5: 01148a1f0110ffedcdf2915f699c19d1 SHA1: 9a223f3a84ac01c80312ffbb1419672b1571d5d3 SHA256: 0a806a6cee1514bf49c6c765510d4787ad5d0046b2251b33fd74557f31b8345b SSDeep: 1536:CWgHrYyw5bsQEl5mEnRRYT8iDXFkVORzhmSv82OALVECKuD6pudxbYJWc2cQF:CWKYyw5benn/OtDKVokxRMD6k0WyQF ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\TYNme.wav	MD5: 1dcc5514ba9009c43b7be9241fb29796 SHA1: 5ab25f19370f1b0a5a0eae14684d8cc560fe3ba0 SHA256: bba4e87b9482ca481104684220d29ead48fa99ecbd1d575073cbd0ded0c802d4 SSDeep: 768:qmuSaPRZbZBy7G8vpWOu7BmjfwAs2UnwtucaHBLqQnbh5+AA5Let8KYYh140K:tZKeG8vZvjY2U0oLqQbiA1tPLh1K ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\YNQwDPFz7H39.swf	MD5: e6dc6b9eeb4a55eff87db4ddcd3228d4 SHA1: 13e7460ae37e87d28e8d69035299a0aa05c70fa5 SHA256: e6fab2d67abf622c8ebb136068d13b71338088b8380b4bd85b09ea774fdef559 SSDeep: 768:7PrnpN2vjXQ+XrqnwCl6S9e8IMBAhjt3fCFh+HIkZK1aH+YGp3P7U:7rpN2TpXrEdlD9H3qRtFHIkZKS+/TU ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\j4prgeOALdt.png	MD5: 6a59ea0af8b57ff4b396c6d184afb08d SHA1: 31fffc71995a069eb0a320ef39fbbdf4c0b16fcd SHA256: b9eca7224679cadafd33aa536fd6e3465d14aafd542e2e665a9ad00b83126187 SSDeep: 1536:NSrPnsGV1DAi4Skk0uKY1Qwk0P/YvqPe8cXBoprpcxU:NSr/3VBAYR1QwkMYoBcxkpcxU ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\osW5V4ovA-wvyiw.pdf	MD5: bfe435ec3cb3df62f63a608f53053ce5 SHA1: 46ac7a9b55940ec5479e2ce7bfb624760437bfc8 SHA256: f9d61d0155a41efb20f6d01e5fc65f77e208d3c6fe7ac86979bdbcfe86d59ed6 SSDeep: 1536:YrloAohner510W4FsGZfOlglcqZNQsoQWnhDrFIMTJ:YronY10VpZfOG/NJoQWhDrSm ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\qDUe3b3JB4Yp_rq6m.gif	MD5: 890b3f5f15802a539712504bbf5d9425 SHA1: 845672688d585eba2cf31346dbee76b13043a20a SHA256: 32830680dfd463a369e8feaab170d3ec358a963eaa2d69efb99c6bcdecd5f0dc SSDeep: 24:ebQHQU47zAd3ZUGCn1kt4lIXt87eMVonUYI8lttRlsH+j6Y:qQwUMU9GGw4XLMVYI8ltNHp ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\sUTp3ipR6r9Fr.rtf	MD5: 39f7ac8e18d4b7b6bf1bfb6f4e1dcde3 SHA1: 948eb3bbf4acff3ef8f107d39ae189c556ae4f57 SHA256: ca10f580b16582cc2ca74cdc313ce76a339f7f21df083fe27d6f16daf35b2328 SSDeep: 192:K8baNyXsthjacq/TsJJUEO4eHwiWUrlkxMkDaIubf9tE5K+9:r2Xt0z/TsJ+EYHWU8H3QJi ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\vg GD2zm.mp3	MD5: ac8ee73941b7e82a88b1c9f0f6921df9 SHA1: c11d495fd7773f467be3d6904669760ab388c8af SHA256: 78a3f7cdddce286d2c1f481cd0bf7bb8c358fb639efc803114ceb142f6a03add SSDeep: 1536:nfjxu4fmkjUbG2CZkHT3Co594V8q5o9gmV8+a6bevr/oAGMXWwfhUZUg6:fo9kjQGBA94V8q5an++aA6nBjg6 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Desktop\x6gYtV1qLyLG.mp3	MD5: 08fba3c14c75e7142c12faf837345d3d SHA1: 14fb54881ea6884ee4df9e7fccb12c32d1e57c10 SHA256: afe34a59705c87dcdca9ffaf312a44e4ed84f03a748ffc72bee26679fc32a54f SSDeep: 384:l0ErtcIwkgqeH11lCs1AgccMDn23HNibQ2vJ/zgiNEj/d8N49KQyydwV:R5wkgD11lC1g8SibQcuiNEx8aWyqV ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Desktop\xZ1B6oUD.wav	MD5: 740662f26e3207c3f25c3e63787a5a32 SHA1: 6181c2dc70f12d8bb48462f28fc52e6c53cd24ac SHA256: c01212bfcc0b46fccc25b01bb60900654918c8d903d010bdfcb89ed892f79189 SSDeep: 96:4W25Z/IU9SzCWpzZqDUnbw4Doae/oXvUYPuYt2:4f+n7tqDG3Tl8YuS2 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\AwTzvxyIihX40m_YB.xlsx	MD5: d1b7e8d0b0884de5cd965b9f4169ca74 SHA1: ad510c4f3ac4588fbc1d648cf1410b7578149684 SHA256: 3f2ef5d182ba35cc4bd669c3e8b0cb87511d83ad832c4144891825e24d7ed4b0 SSDeep: 192:T5ENc4Rv36EU4OEseV0je4bFu4x+JiEuPIt4acs29FnaGg:T5EJR/3U4OVeaywnx+J5Dt4ac9daGg ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\D2LibbV7P8o2.xlsx	MD5: 34a2c777c1e790b1adb306b4f7960834 SHA1: 263d9b6466e6973768ecb3e9306e9a37bd076666 SHA256: 25e352fe431e82b4768b01da9b1e9184bd4637f76b7d593dd0c067b31d9c96ca SSDeep: 1536:5lK8USP3VQWpD17FtwjQpfw85yStXFkaMU/nJ5gkyRkmL8+T5A/y9:zUwVQWt17FtwGfTIyXFT/4kyRZ3dS2 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\Database1.accdb	MD5: 2a228157018a376cd0e84d7bfb73a8de SHA1: fff99767a72ff941ae2935a46217b1a40ddbb34d SHA256: 3f0b4f03512aaf7bdbf3a401e5fc7822bd03d0ed742dfd6df3a0137f7923c365 SSDeep: 6144:wMcRW28xvwJYIj8XUJY1g+filrmBI8LfJTCQfkv+qHwOeefNcyCrt:88hKD0miqrmVZ/TqHwOf6yCR ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\Fd3vf0MrZbm30RWUAXEe.docx	MD5: 0876d3cea051cb0abde1805c5cf1f7f8 SHA1: 81d0c82987b2cbae1b6f25b54872433e4f8bed35 SHA256: 0620420a428dcb012af24c40daab23f2e31e86457654c47ccd906c3dc301e5ae SSDeep: 1536:eNEWIFLgl5BCUiIKrK+1y9CMaIKsIwJL5jeBknJzQ8sAS088ASSvEO:eNEWIJgl5LiIxiSCMaIKiLjJzQpK8qSt ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\G6Kqm_sZXHnZXLD047.docx	MD5: b9aa535777fd5b71f18cf30997b8890d SHA1: 65def64cd193be97af809de71f2122a9c70f519c SHA256: 00f4af2278d90d2753577307574a89c2bf72ebd1d8650d2d426f9cd347b413a2 SSDeep: 1536:2tYlkX3tv9iKEW0j/KiXiaF9TLNFAj9ozi7M+tjnw/qoQEyuiCT2CvSs2H80:2YIXiKExzT9TJ6s4HtjnoJQuJ2wSXH80 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\Na6LJJE7p1uoZSJSf8zM.pptx	MD5: 843cf268041f853aa22424647b9262c5 SHA1: 8d4e4371379191ddfcbaba8163b1ab6ae88bebd7 SHA256: d67a7711f3be5cfaf0178a00e8f6d9f4199e8db6ea181979fe7f03432d487a22 SSDeep: 768:OaKjsAiXoJiOQcUzflGOuPRF1yw7nNdQc6RJFDnWedJI:ODm9zflGH5XDdQNnWeU ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\W0tGoRBx.ppt	MD5: 7efd5d9e84d253feb7920eae813908b2 SHA1: 4d884e7a8efb964552adfd081aecf37d5ccd43de SHA256: 012ab17db1ec12a4baf0e3dc6af4c9aee36376ad2786f7808c430ee1af964e14 SSDeep: 768:YK2EHzU00WCwMNDxRZr49G+TBVDgn08cQdBmojBi1rN1/EQbTYgHEog4k:YKlHQ00WyL9gVVUn00dBWlTkog4k ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\bMbZPaEJyggV369P.docx	MD5: abc3269aaceaf82dd9752fe0821f968a SHA1: 25aebb1afcae5a4c06da26018ff96562f16f06ae SHA256: 6711a6de5eb21004da843a1ad31d3706f831202fd094cad276955e1887831912 SSDeep: 1536:hm9d5B38YO8meX/c8eq9s6b/EoQCdO5aTHMYJrCqnHpi:hmf38YdN/g67EoQCdOgTHMYJrCWA ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\gc82AQE2ov.xlsx	MD5: 8d33a25b2084a18bc402234f9bad0d2a SHA1: 17afa490e3ef08d6cec8a4386c815c2c350a1d1b SHA256: 3468018dbf0455864c836b0df8e542aeaf7a6a7f5e590af20f81c1aff7c0dce9 SSDeep: 192:lOY7L4pbdoU/VAfjnT/OJOPz1lmBuCH5JpnUCQozUmyurhWr:lOYP4p1/VArTAOPp4dZvnUC/zUYrk ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\jMU1F.pptx	MD5: 71e6faa0d216a6deb81cabdb319226c0 SHA1: c14143994485760a868f49c0f3124db2d7477bd6 SHA256: f84eec425f1d9ab3d823ecf0486908805a986203ace3365cb59aa8d6532b37d6 SSDeep: 1536:84+SxMswrQd7fWJezfBo5kb0SmXT3uDb/fkWz6+bvh/+E5hL9HLepQoqzx1fmREV:Z+OMLQda3dT3uP8Wu+bp/+EHN70Eis ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\ktE G12i.pptx	MD5: cfe5fa572da930a6ffe5bdf03592e337 SHA1: 2e741cf204d110495246f6f74cf05c5799108fbf SHA256: e0873fff7c2511826fc9493f4a8b82ed2449512bc16997323302546d07bb7a5d SSDeep: 1536:EgccDNptHqv1kyow7Ht5SigCBLaclOyY2cZxbL7TZaL+19U5+RhOFJ4Y+r0t:EV0sHzt5FndDlcLX7TZWszbOfn ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\t8x8ZGgor.xlsx	MD5: b60660a9e4504203b65590f444f18d1f SHA1: 87993e693ed78bcb193f942e6ab898ee3771912a SHA256: e692b7a8db81b892f526ea0856e5489ff5677d549aa3fe37a8e549a39d36db83 SSDeep: 192:ZJb/plRngzlGIveo7eHAYXnbuSGJmD0+tpUYZ:3/pSlGI57iqJWpUM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Documents\t_ 9GK5Xrl4xmu.pptx	MD5: 4d0eabcf39ce3b3447709f363165afa1 SHA1: a1988f29f9d63499dfafb943b678311ca349cabf SHA256: 945c5965db3d1935d0244d2c5d139769784f0413be79b83b562ff0fe8477f4f0 SSDeep: 192:vFySqxuyr9iRtNOEhZq0v1lyN2rSsrDEN/6TJ2aRIf3J4asbqd/lO8nIsFoGoB:vFm9JiTvCe1I2cWIarEIsolB ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\zUpk2.pptx	MD5: c93904f3653e7b12ad343044119fdf28 SHA1: a382559132a174df60919f59f06143858bcf4215 SHA256: 857fb0f0aa1520b4ffab8aa4811dedededdf3f93a406af1fd13324bafc68c765 SSDeep: 1536:Nv+bNIAH/Bnt7C0whMY6IiRH+nUhV7GYurrKNahIXXauu0r:N+NIA5nBC073en87yrrKNeInfdr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Documents\zlCAQr8v kR.pptx	MD5: 07375fce4b3876c8fe9140981f4bb1c0 SHA1: 28aa1efff7bfa2ae037961959e0d87bf752164c0 SHA256: 9b9d97121535058a102340abf3f9e242b4f100b3d57f50191aee4d98a835f862 SSDeep: 1536:mFfIomrnBP4ueb0lkR/NK7TyWVst0stqOtPvVw8y/2Y:lognRPTwK7T7st0sMGP+5L ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Favorites\Bing.url	MD5: 66e7b872690c8e01bf2fdda0a347e295 SHA1: 52413afdf8d381c7581c813ca5e8642a5e9ac370 SHA256: 78715215a0108f133eafc5a7021cac4bfbded05ae85959da870848efeabf8403 SSDeep: 3:t9t8x07QPxC2eAAZwRVmLIyClBEO0t6vnVs+WoDFYNoR/Q4m6CHiZfM:ax0OxCaG6Vm8yPOa6PN5YafmpUM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Links\Desktop.lnk	MD5: b35c344aff8bbc58ce043404aa1f2659 SHA1: 6afc015ddb4f6bda859d010a9dfb189d084bddb5 SHA256: 0a354c8e6c057af23e0ef76ad900af0aa258a022e78833951ce5beba62783762 SSDeep: 12:A2DedpjuwqKdHDERDvySK+sveqp7L+0cNu95O2wikvlU:QdpLDDD7Wqp+0uy5OhPlU ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Links\Downloads.lnk	MD5: a239d16bfa8f07849485bb85d626cfc5 SHA1: 896940405918b00d351fe657c1b7a18ea5cb5654 SHA256: e97a4afabbda703c9c2290fd128d9a1309aa1a05c51ee51aa9cf59fe933cbe87 SSDeep: 24:QTZnLxBTTmCJNUJY9hC3AFTOapqJlTtXRvD3UgoI:QtnHTLNgkhC3GTLOBRvD3UgZ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Links\OneDrive.lnk	MD5: ad3882cd844b2894ee538824258aa03f SHA1: 9fbd804b64c18274ef0c7750478183b30bd46f4d SHA256: 0056eb7b4d0d7dbd724f9a0683bc18d3fce592ee7a507aaaaeb8ce40a474bccb SSDeep: 24:rc5E3NIKSgPVHxechPWGDny3ONO/yxninXn85DoGz3Vjvt/9sqDBlH4e9x:XNSexp0mNE/aI8eGjxvtFsyce9x ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\S5MR5Tl.mp3	MD5: 79fc46ed66bbfca53c383b8fae8e9214 SHA1: b294019a0fdc12936b2a2908f14ea5702e82b0fb SHA256: b7c201d8071b3238a1eeb06c43f0ca2472d2273a9f8005fdb17dd8c5153dcd99 SSDeep: 1536:Vu7rYKsfEMToDfhYtVITBR/sNff6PwH+xZJqr++17jiywbeHzadJCrtYO:o7rYKUoDfhYTIkff64HGZEqn+4Cr3 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\SOJ-ccDgHNNT.wav	MD5: b9c8d5a6fe2ed8caaefab45e3ade8d02 SHA1: 5b49ebc1d2aac192b363154906111530040985f6 SHA256: 276d79fc4fcaeeed3b6889a8a8defd10f47b972b205458faf29770eeecf916f5 SSDeep: 768:5/A6M/t/QS2hxaQWDPf692xF/fk1uDwVcejly98mhZ/EzmlVS2XALlqgzrvKn42d:5G2Y7fLxFfkEZejXmP/E4VSAoogzrynt ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\WJJaio\JoAwPQBE3q pcEdLe7t.mp3	MD5: f9fcf1a97b216a0efbb80d468d0199f5 SHA1: ac030186617dda949ec0b56089403d80ebbb6674 SHA256: 21f0193380bebfe63a90b2aefb2bcc723a503ecd626cecd0ff4a37bbe1fd9e36 SSDeep: 1536:mwFk4p9O0eguTWi8woJT6x0sAQvUbHMeEaTF7xuJnQ4IbXVY9:m8keO4u6++V+dGRgJnQNbXa9 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\WJJaio\PYT1mD6E.m4a	MD5: a527060ad7e133aad3bcd1d81ff34b09 SHA1: 7ae3f0fea99e3e5fce41712bb0179aa0ef376023 SHA256: 6505bfa11ef21f6e31adece329fe037a4896ca61852aa161dd253dfdc8550a1a SSDeep: 1536:g+Jz4cN1nj0wTT6t3pA71a//A1OXu+nIHVr2xX:gFczx3kpKwe+nI1i ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\WJJaio\iE-z.mp3	MD5: 9886c11b4b1bcc5606ac10320ff94e5b SHA1: ab602c6100b5ee784aba2c7445807d402d5792ef SHA256: c2d4f5118bebccf9faa4d87385e17bff66324cd58492a290cd42fd10c847640d SSDeep: 192:BRaYhZtJDHGVox1AvvJ+/9mnSTuWVpB4vEHtcvsklXDJ1sckji1:BPtdHrx1AYUYftPklTTsf21 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\WJJaio\kZO6DJaNslP.m4a	MD5: dd7de686bb3a26f80c705e6764e1ae0a SHA1: fe5dc8930035b675eae0e4262ebb99f6b8849db1 SHA256: 88e5f2a18180e9cf344cedd13e5f04c4568bbcafa18f70d792af2a017db64efd SSDeep: 768:geLZmvOFRT/79bu7EniAAyBhO2HwJIGPjQ6S:gwfbsQdte2HwyGm ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\YxMvR jP6R9iWOhjvNf.wav	MD5: 0c78bb0c7f72bcd844aade290eca503a SHA1: 3109f54e5e8efe2f2026528cefcdf371ea5670ff SHA256: 0d341e6c8a0afa1ee8bf4b8d43486ff5fd3a8658eb7349672e170f1de91529d1 SSDeep: 192:kvTU7n1gEFLi78OFuLYjPPS1tHCNJ6iK+O1S8VYhPiar:CTUryl8T8jM1bimghP1 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\gZzA8rGg5dqPZ0T.mp3	MD5: 8b166dd29cff841e698178bf0e172101 SHA1: ac9fb48b595ef2bac71520e333852e3079457304 SHA256: 10f907fad4d5602412787dc4c5d6ad138c4343106771b7439e4b790ec3d96eae SSDeep: 1536:vbuLFSfk8aWWrCFws/kDU8MTBIpabt/VQPgqn6Z1WqSISNGjonMt/KA8NYr6H:vbEEfkeb8M1Ip+19q6Z1Wq8ojoMdK94q ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\qdem dTmLMT8K72.wav	MD5: b92d2fa74dac4ea7cbeaae64414c68dc SHA1: 0b0a010691d3907ffad71a1c0bddb4b741f47c2d SHA256: 561c52b1dfaeb36174c4f34f9cae51cb891a752e12a9d5b429f678632b512de9 SSDeep: 768:MWk+Y/32wCEHh5zedwGbpRs39c+pzeVT2nlljq1PDqMPWgUrpkt5Xq7esMEpZHVz:BVYuwFedRbpRstFp0uD4mD1CmZM01LK8 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\r0-kiAb.wav	MD5: f6221f1bd3a02b44515894b8829e2ef5 SHA1: 23484fe36f0007b0191b5a91bade885815e6c2bb SHA256: ef8dac487ce82562fb5242771663f9ab66c7d8e28bc103155b870133396a8b7e SSDeep: 768:CyRRpASbjP+GC4bfHDDSvn4W7ljxugMSVJgcYbjUlPYS2mFPUq09Fy/j4T4VTk7b:RRRpAEP+GnH+4WRr/gZjUBYShg96FkZV ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\rpOSt_\IS_U3sQpav_0.m4a	MD5: e760ceecad9af6b4b3f453c538ec7d0f SHA1: 4f45551c89493176c4e3fed75df8dfd66bd88cc4 SHA256: 31017458bb4ec5f234c90778056d04dd8d15668ef24cc349cd3045a1631817fc SSDeep: 1536:gdAa4oW/Hlvp1Kb280iovHAN0P8vYum2eFEqC2wpa:gKo8vbxiovHbUvfOFEo ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Music\rpOSt_\LqKFmm1FK3KQJDYVbr.mp3	MD5: 9fb30d69e8c8f42bdde5291a9e52ed00 SHA1: a352c87e7ade8c4416a4060b04c8620343eeaf57 SHA256: fed79c3fc571c2abd42de4f6acf287880aba1a1a91b2bf7064c16c116d3d7155 SSDeep: 384:9Z/xmnu18VujFB6qp1e9m1C1//ufnMkaFEYr8ntDg4aWG:0JS6q3eN4fMRdrb4O ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Music\rpOSt_\YeIA8QP-.mp3	MD5: e8bfc677b50a01fdce6d3a57473d3e2c SHA1: 8ba9c188e387c0297c737a345cb88c99ea26cad4 SHA256: fe8f25c7efb9b068e3037d8d665805658d19134fe7e4034b95e2bc3d4bf2ea64 SSDeep: 768:4/pZ/K3jIeXzkris96gtvU13AnwTRi8kQQdt6axWmyp1hLku9h5vXzfNls:4/f/i8YlCU1wwTRMto1hJb5/s ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\7eySl\O4esMVoHnAOOtg.bmp	MD5: 32b6c5f5750a79fb551e172e57c9a2fa SHA1: 9cfbfdecffdad0555083e30029b3ae53056c7696 SHA256: c453464cae2154977098b6c3d9119d1881d2ba77ed898c804b78d0783037868f SSDeep: 1536:boB3/h5nidVn6jpYZ4dt0jcJYhK6x6muPRVU/9FO4YxJJfpep1EP7rgPZXKWfZ:i3/h5ir/4L7JYbcmuPRVUbzofkgP7rgb ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\7eySl\fo6q.png	MD5: bf6b3b9b6cae78a63f70e5b0989ca329 SHA1: 58c9d9df25c224ee9edd50eacac19128aed6e2b9 SHA256: c20b4b20fdcf4860dee63f26056f41bce9953495721d5594a8651deb4d549c3e SSDeep: 96:v+fsf4yGfU4sqLIzb2Pj5smYoVrqg0OfjvV/ncDhixaOOHwjNiUsFseHDRu7c:gYMfv8b2im5egrcDhixaOOHwj0Fs6oc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\7eySl\qOYIhL8Tt7XYHm2k.bmp	MD5: e3c87e3a5005eacf797db9477b7e8dd4 SHA1: e241136d96ba985835731df236bc613963c34d32 SHA256: 1274b7ca968614354fbe5a19cb44d607415df9f046c1b254945ae99179cf7e49 SSDeep: 1536:sMIlBvbkrCaJocJNhWswBUHBQQ5vAJhwD/rDBOELucMDu+OmNRON2Kkx9+TmB:sNTkxJ+s1B3oJa/r9OXzA2KssaB ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\BLs6lYda5rb.bmp	MD5: ed68ba6833cc445d597ae741e3d96026 SHA1: 4f8845ce16b9a46c0a2fbf307d4276a443f26fbc SHA256: 772a85635eeee550de7261fa85195903234adcbd3f2acbe9417e9904f1f111f7 SSDeep: 768:Jaxc8+estOlNnTY5LS2HOrY/peQklNaOV4oAuqnd:8xcrGNk33/Td ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\DbAKnLJyWT.gif	MD5: ab87580439e5527e9cd5d895f8d03378 SHA1: 3de994b096dbb91369f3eecf5951ec89303b05bf SHA256: f1e404a89b10fc306c7725bc725d1b28b6bdb24a8473585c894997f056a5dd6a SSDeep: 768:kLKXK7kuYyaMbG4GPAg8XRgSh5N1zeg0so1ooqhDgUWVizrlbhfLtycd5El:kmUtYyaMbZGIg8XfhzReg0sWqtgUU0lW ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\AxJbUx.gif	MD5: feec068caf666ed69f2228b813b01b67 SHA1: 8ed76bcb6480a09886aa4b62f853b955021a7d3e SHA256: 9a6cbda62c673e2bc0aeb490a780b95647ddbf5bdbf2378c507593d32a95b8e4 SSDeep: 768:Wziq+6k6EkjkxQEjYyE6eUeLOiZkivGUnwK6v/8nwHmups7KyZV/DxMwm4kq:Wzz+6k6v/y+pRvLwlnoG3s7KyZVlyq ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\B-lTn5RsYJr2iy3px1.gif	MD5: e3e6c70fa7318a6305c59e90727a365e SHA1: b2a8764e7ea9b771a753f4b3afc84242b1cd5b39 SHA256: 1656063df6c39df89a6a3fc592daf98e95709503df5943096f60d5197ff35d9d SSDeep: 384:nZSpd+HsM5WvHPkjHCjdYZ/gSUjPVotR0w4:nZSpd6GvHJiYSU7VotY ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\E9vRy.bmp	MD5: efa1b9be5af77e46bf65a3a596cc246f SHA1: 0b44ef99cb331e8f57aa7ddf90ebbf73ea15f420 SHA256: 6c26dadaaf2e277a58d6a44465a637e65197fe3717269755acb05b420b13633e SSDeep: 192:rWFHw8lmh1TH3lBs9YMJ2t7xIBP96UNY4i5Ddbu3IwQk6ClY29KH0F:rIkRBs9YN7x4l6UNYt5ZbcI6Vlt8Y ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\T-AkucnYAClE9cCS1u.bmp	MD5: e5c30bff185e036e244610eae5e04fd5 SHA1: eccc3e8f23064908314f091a3996abbf3cbdd666 SHA256: 434b11722d9088bba53b52d3042fd28cf4a02d55f9e18ae62fd35e6aef0dc09d SSDeep: 1536:Ap7H35LECYR59WYI2PHeebJyrDC7qDE1lJjPBT594aTaZwEC8JCG:ApTdECYR59WYIM+ebIrDC7Aql5PB9yaQ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\atmjhH.jpg	MD5: 6cf1f2676c40ce44e92d270b64f7db13 SHA1: 452a9ff859a6fec809725f3f8a871b8dbed8485c SHA256: 77f143ba2f0c7f351107a57dd28eaf66469a5d362391bdf39c2f5c3ddaebd52f SSDeep: 1536:B2uDY2BWgmxCRmwIe7AoutOCm7iQSuX3B2QfV6A6j3v5QkHOnFoFW3i:B7Y2BLmCRjIeJdd2Q/cBQi7f ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\jxWJFaTEm27qL2.bmp	MD5: a2c8a53b4841e0a2ee82851f6893ac26 SHA1: 7acf8717dd3ff956ffa3eafc355620f176576086 SHA256: 3602034c46d8c527653faac3621a97ce430cae6763962abca5883223b46f0b4d SSDeep: 384:RQ2AzLCNatLsZHvPXyfcI46S3sY9MRYKY515CCdTLzj6vbVYnOMN9mrHKOHdq6k:RvACqBfcIU3sYGRYZdjj6DVYtN9mrHKX ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\1wjQoJdc5OXITZs oWRF.bmp	MD5: 8f5aaa4ac0de86310b510ee68ac84b08 SHA1: 678a4fbb2437f745508459a6520fe0b6d0d2e568 SHA256: d0db5a8090de9581a6841bc7458ff61fb7e4811c8594de9769077dc8ddda2a00 SSDeep: 96:0skA5qVE2teNHFkeU1mTBoU/LEplz7juvpcnI4tA73kd49VRxtG6gRzRjoxbPH7U:0sF5IE2epFQ4FF2XG3b37tGz6xbg ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\5mS1fjvaaG0Ro2mK_.bmp	MD5: 86bafd55f03df9c0bde9f99561e1ed61 SHA1: c14a0cd3fa628614e3c1dcfec8b046dde406465c SHA256: 054de399fa254ca2fe4cf9ffd5bad05e8781edc10d2141e103a32037acc97668 SSDeep: 1536:semZ8p8uJPwD8tzCBYN+s1bcbKdwqU8dv5mn5yl8SRO:u08YPwgzyg+s1Fdzlv5Cyl8SRO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\E1iTDWatJqeZEtoBKGL8.bmp	MD5: 75f6784f77d38e2677f1b1920e155f79 SHA1: ca63afa21a48b25193a294f1ff7a90073190a212 SHA256: 33374c52c1235329c45f32d85017f068eefd6148f05ff429b00c83df34c74658 SSDeep: 1536:bRugItrXu14qGZykU+padoZwVQHA3TBAiqT3030YIsNUmk3LWxXd5gc5WT3qsDJn:1GXuc4kUOaEQeiZ3nIek3LU03tAs ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\TSX6SLLsUIIGHeQ.bmp	MD5: 99871af6de89f5ba0b615959ce85ed39 SHA1: 72e595ad87d72048b06247b341a91fc1c9844de8 SHA256: 74c6ebe0ba0881802dfc383930c493d03cc48761f65768d85af8cb8f0cca12e8 SSDeep: 1536:lbeu1cu7KYfHvcaZUXdRjgWFwwPwV3zOBqCpqUGCtz5FZw1:lyGcuGYfHvcDNjPwNzOLbt9FZw1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\7VV0QgECyQOgRdrP.gif	MD5: 1b26511933973a4defc0d9117e9bfbbc SHA1: 0fb84fcf01ed7bf291fcbe36abef5144c607e04a SHA256: 1209f789ab1c35f617b071bf064593a668e0ddd57005f27275ecef70417f99d9 SSDeep: 1536:lKI1doog4UO5EAWsFN2Vhjg1eqi3un1cxUQjxHlIrsfeBd65Gye:lxgMr2Vhhd3unoJxHqofScsz ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\QZxH.bmp	MD5: 114a0d8b58d589479df1b05b6f170769 SHA1: a3ec0a03ccbe66d3fc777bb5ca1401942e4ee5e1 SHA256: a912f5d3f1c14fa98c25e83c17cddab566a36a502cc89bde2e880d286801de78 SSDeep: 768:ZJ3Nz+pJ70eX8qztUucExoTx7i99+zfYh97Gl2slGL3tiDBs:ZlNzkt0eXV2U0x7a9+mG2CG4s ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\X-S7pEkBPQta 3-jb\Q 5D.gif	MD5: 293e5b7ebd78ecb524bda130df1069a4 SHA1: 30dc056fcf212467bd2ea5ecb47f6023a3713361 SHA256: 7a1e72673795eb49101d49cf50393178014efd974ead8a61db664c3efddaa52b SSDeep: 768:qpKjH2h5GShjEjkQBwIeoKxL2lNsqnn+DEadcvsUPU:sg2h5/WkQSIeoKZ2lNsonqEdUb ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\X-S7pEkBPQta 3-jb\ivEZ8\nfqBTli4iOq7pEf.bmp	MD5: 0f15a7be4db64cfe84c1fa0702ad1311 SHA1: 187adb560b97b9926ae3c0574d96cf5817bb773a SHA256: 7b837d3bcb7aa986ddeee74b98d0a5ac0287be8e122b1e4da40bfd981a140a72 SSDeep: 48:hdCQ9xKUH4AyYuvB0Ts8Vs1D808wNsoVnzeVcjnelWc:hdyAydZ0Ts/RvfVnaIeAc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\X-S7pEkBPQta 3-jb\ivEZ8\sDms7YbablsY0w.bmp	MD5: e5cdf2b00a6cd49c9e1dd7f8ff6ef967 SHA1: b933a2711c07957588cec9afd9c68f8e3a0811cb SHA256: 82685d259734c26ced4a205e9809f58120a903d8a6c7fbdd7f5eea916fc84aad SSDeep: 48:FMftLj/8lCJ2jp9rXJ8sbFRie6FmNj/JiUVcfpxRhuEjNTlIoXm:ulLIlM43LeeFRCFm1/wUVcfLRhuoNTSb ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\X-S7pEkBPQta 3-jb\ml5nXHH_Xywh.jpg	MD5: c016f94af68b454d58617f6b579098fe SHA1: b61a89476dd18ce152875f9612ea3dfa84cf64b9 SHA256: d65077bfaa1266cc45ea605e7f1bef88e55b77589a70f5caef85ec92af277317 SSDeep: 1536:2od4leuDK9yzK8QOQyERSCRvh9Fhw+hDoK8xp69LxlhIa4eLjrgi2u6yFYjiVtxw:LdKW9yzK8QnLRz/w+hD4xEIyLjz2ulYH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\cKWLBVnWwjQGtvFMKcHO.gif	MD5: 92788d6d8e882013ceeaedcb39963649 SHA1: 907c2ac9592b09636f438857017033d194bcbef2 SHA256: 79b2e7aa2db38832fe76a3fc1903652137edbd047191d75b59092684c6a00915 SSDeep: 384:0G+iTlZdxQid1ENyQwQtim1BF5cj7roY49S:JZdjggm1B3cjv5SS ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\cuqQHS85RC4D6a2wm.gif	MD5: 459cb5ebc8ee326000799e9dd3945ccc SHA1: f67c30da589365e9d4da65a4d275bab730da4488 SHA256: fb1b100ba9d29e2474c66090cdf2ed313311783e20e552c3aee9b7fb9d1c5395 SSDeep: 384:KpTWmxzhCTxwOYwmvK4WIozqOFOoCl5+XjmeZDpaxECe1qUXeW66:+TXxzUT8wmhWzzqqm5OvDpaxE/cUXu6 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\fUXXZ.png	MD5: 1885b55ebe448a72c639956277338761 SHA1: 03f318fd01d563650fe328ed05edb982ae85b2da SHA256: 5a66fe191e8dbafe1a5025e839dcb93a84504758d741e045798ab3903911a16f SSDeep: 1536:kjF4sUspnZfMADDfBlpoQf+mZAnqPeQsUxd5tl6w/cBzi:kpEshT3JFfnZy6Txd5mRQ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\_SX5RNzTU.jpg	MD5: 7a40e06064745a6cf610142931ccfd2b SHA1: 7cdc206e7d9bff629fabb81a83903f6e33e5fb33 SHA256: d00d306ee0a5159b6a18f786f3279157ecd864c145a06117b405462c4aabcad9 SSDeep: 1536:80C170UmaAUAPITKhIk4Ti7qF96aQ4vzAEbKXUGl4FWHvGckQacq+OKV4GS:ONdv3AwTKIbis9accEIUx6IQf0KVY ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\jpyosNUhErXyWJXoh58.bmp	MD5: 22a7187a721e7bdb3c90a5759cd33b9e SHA1: 4864d188da5bd18aa12f1889c4c65266cbff21ef SHA256: e102505eeb8165fd0189d261d0ee96a471b320c78488ff5c9517b0d2dea5f2fa SSDeep: 1536:5sJCmQD1GX/ZcwBebJKdxq6sP3S++FmX3hF:5ztReDDdRsKFmH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Pictures\lO -5g sYCQh.png	MD5: ae939b1c9b462274b815b726af909918 SHA1: 7bbb18c31edd93a6c352427ddc2d64108d6490f8 SHA256: a2a928ce12e58cffa7d375f9df6ca9a2733cc2bc33304640de53a814abc317a3 SSDeep: 768:OJfmB+yjb3XPVPcdAV7c7tho7G/6GYM/b50cm/WqcAsZmgsZjGOA7jMj815T2C:OJfmB+yNIO7MnoCSHDci5ZjgMEZ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Pictures\wsFEe.jpg	MD5: 83114f50cab76f95f3a33a8f396f77f1 SHA1: 7f4fa0c7167e1ebee5359118e05ac792d1f02fe6 SHA256: 44811ac47254d101a72cda8bbfe15571ec1b60f411261fd0b9d2568e06335e4b SSDeep: 1536:Zfdw9cxvYIAd86ZyXQ0VC2TXEMKLuWgU8Nn31iAIHhmTyn1I73YUDQmE2pnevQqU:ZfsLc6ZyCuXTC0R0BEYUDTE8eIqU ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\7Jh jbRWdOeV7nIfTu9-.swf	MD5: 189a49a81bcaeb2c08c12e4b5105f463 SHA1: dfc53b9cece252ee5787ddc3d40440204dbd1a92 SHA256: 7dd9d06ee3c8009c5227352b3224411fa678d3bfa36713fe21e39458e053fc81 SSDeep: 384:uHuWtyOvPxc2FrAyeZkoKLnmRLhAxlvVSLkFAScnEdEe:AyQxc2Fr4SZLnmRLmxlvVLF5D ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\EHnSfOM55rpKA7K.mp4	MD5: c63ca5e72908042c0e73418988328cd2 SHA1: 6c7142861fed94a7f14ab655478bae76ef59f227 SHA256: c95f667e2caeeb55835f62e0a04a37958296a8fa880a71a54880444b12d6f476 SSDeep: 768:I33U/udCnNaJh0gqu/1I3zGnOr0/icwGh5gBzA6HLprYqLfoU3qCoHmVS:O3caJ2/DGOr0KOSRLprJLfoo9ceS ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\HXbpK.flv	MD5: 910ae13cf54d70a09f44b13a479ac427 SHA1: 367e1f7cf816d8142949c9f83b90e3c8fc087428 SHA256: 7e639615fae43a849557d2efec63f9f320429942e5e1beebc8e614145bca28ac SSDeep: 384:q5OnZ3So6P2d95v3TYy7PahslwXrPFyx0xoIEulj8z7XvS9F8apNi/6ga1Ragx:qcntSRP2d3DYyDa2lw7PFyxioIh8z7XK ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\ORXYYM2UNGM HU466FCw.mp4	MD5: 9c1a9e1b3bd9de2d820cc48f6ce43127 SHA1: cc03a620a2d3bae1e20247581f920d22eb77540a SHA256: 00ce888ba138e921759857da75b36778b9eed7026c3effbc4ee6117c205abd8a SSDeep: 192:FaXH/c7hCYu3elFw1+MimAexsmsRb5Car3zHJ2My+cXRZ:sXrYuOzwzimAeXslnp2My+sT ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\Wr1l.mkv	MD5: e35da3ae0d23db59738f2f88a6923227 SHA1: 2591498619ddbf0ee0a98f3d810eea8a27e2f633 SHA256: e33bf9c7d6bd4522716b2501585b30e689cbb58a0ec7077cc542d67e73e0823a SSDeep: 192:qH3QMnGrDz/wX+TnAWx372Dilu9Zlc/UKjuvaS8T/ywUAuz+uS6:q5nIpxCD1Bc/UKYWTK0uz46 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\bJRR.swf	MD5: eef2f22f5f98a67a276c1ec64b7786d4 SHA1: c631878f26ed9ee93047f10c0aef0333fa2fe67c SHA256: 382044260dfee603f76f53788eee79b3fa7c2ece98beaf7ffc6dc513e0d6aec0 SSDeep: 768:sGC1g8nNsGCH17rSaGFn3SePjFrM6kBhEwzNFn4IWhKGVIuCx37Ea75tLm1V:sGCqECNrSaGFCe9UEKT4IWRSD2Myr ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\rlhZAA.flv	MD5: 8de4bbbc17bb80cb96e302b0a2ddd291 SHA1: 9007a96e323b84d1119f4f53339346e41219ccdf SHA256: f53fddf3db8eada65a6e7952074ed6a61ebc34875744492e489d93b8ad425361 SSDeep: 1536:udCai+/GYjDvfBRGCJU8uh9LxFwXkfua6UMMmCk2NTIhXiD:ud1LZzpwCJnSLfw0V6dMmCtNTIFiD ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\11SzVItUUcSb.mkv	MD5: 0d27ecb6c4b6b1444bccca0c9c2df7fa SHA1: 4df7b973fed45a29229105550b7ec38e1912e1e2 SHA256: e0113a28dd8855abceaece3e85379ed5e0bd3d5149e7d3349b1d27414104121d SSDeep: 1536:a1Po30Ye1mWWQwy/kSyWVmG7dtWWv0QpgORZDnTT/XJkkKddtOWBnDpoifBx:IAEYe1Nx/dwE3D0AxR1vekYtOWRRx ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\NDR2.swf	MD5: acc9a9a2d4a63fd6791f6787820d8b1b SHA1: 593c2630570c8854fd432cfa4520bba93f197384 SHA256: 3ece54452493b1a0aced65d03c9c646ebb2efae763693eab14f62c0ddc6dd8ee SSDeep: 1536:cmp5aKfbWVHZLd6XsEeuFqCXzoWpr3qqlhcr9EEP:T5asW3JkdtXzo1P ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\gkeH d.flv	MD5: 44417487fbae78c0c7550adebc6baaf4 SHA1: ab7ca57435868917fa85a4ee3c3c6621a3a943e4 SHA256: ecd53dbbe5b67e43fbf7889c816347639930aa0306743c982b7515e760ff539f SSDeep: 1536:ovIrrig0AXPXFE+thsQlyR+T6+e8oaEbSfuV3uE5PyT3exF5q:ovGrMAXf9hsQlwUZevPS2louxW ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\nuJN4722SLrFA5FcO.swf	MD5: 0bc2cb65b97eb2c03a8757dd856f278d SHA1: a5b3bfb828746d1210a0d1c31916863558455ae0 SHA256: f10907c72271841348374db8565a4577429e12ea5d612d2c5387fe5a7c22672a SSDeep: 1536:dx8DWv0bhmTLsztsKDAH6s0LzzFgncn0s3vjE9YeYQ9vfNUDe23hRdR6O4:dx8DgkmTLEttDAH8KnGpI9Ye9fmDL3h+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\2FqKH0e1.mp4	MD5: 7ebebc37464f2a62d25a460cc573bf07 SHA1: 052e1c02b530e00c207b0761b4619a3e96902ca7 SHA256: 88632d7ff72adb508cf10807b354898dd6e09e54b53fa68e6c05a5b660dcd8d3 SSDeep: 384:fCs6BM6ZKgHSbgMqfhnsqAyCzkFZsbbLdGEPEm8EsRT9iOWR2oA:qsAagHSb2fhnUjqYUEPEhRT3WR2oA ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\7YTjH0dUisky.avi	MD5: 5271fc4055ad5bf1b6bcb1995c45256e SHA1: 741df3eca79a236845e9bf9d3356f7a1734a4429 SHA256: 89bb8e2a6da57f19f1bc04179163dddcba17599ecf41ea7df21ba36f0965826b SSDeep: 1536:YY+OrX/sodHqhAFixiFLwfwSW4wcHvKPjW0lGUhbUdDn:VrX/sodHaYF8fmcHvKPjW04EQz ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\N4HY.mp4	MD5: 6db718e75c84839001a63c63987dc4c0 SHA1: 686f0ace61bfbe6f215ff71fc650b7b5eddd3a1f SHA256: 0bb803b077f4a3df8aca080b87d231ab75bb1ab73eb24ed028f54c5fd868e2a7 SSDeep: 1536:KxWmSRtxeun3NyrJhIQif1ZcCpJPOexKc7d9sSvsJUdwaBUloIxjP8AdpiE48ggG:/ME3AMrcC/WexvdaSSU5Bs5xjP8Adv4f ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\cUuJUvxSgC.mp4	MD5: a1e0adebf2804494dbb89ad1cc21da6c SHA1: 23ac7b548617851e88688729ee3f0d9be5400ca6 SHA256: 0945ddd43fd8a11b3b3272e5617f5446b0b5a26f8df61f347c0e518eb0fb7812 SSDeep: 768:nwhj9JKJScC2hq5EdN9iupiLOmG9qozbwXgAktb1cTePrZ:nwc5gin9iupqOJ9qozbwK51cTejZ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\lZEdHWKrOvBjt1.flv	MD5: 102e66b5462fcd0a963036fbaaec8681 SHA1: 3d3417365e7adb8fbfa464a18ee18e98464090b8 SHA256: a8f08a560f3119b10b316e7e93c8892d9960ce169363afe318a6289f17c236af SSDeep: 768:SG7tKMQm3WgeDeeqPVFPM0uKpWGwPncNjjLDqkpVn8OobcWX49lVLzy2yuIMU8TD:dtKMVWg9DVs0DxyXA3Sud3vzHn ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\oHd7uyuIWk.swf	MD5: f23a48207df224363bfc4c727fee5bbb SHA1: 0b79b194a5bcbeca86288685767bc8f0a2af7378 SHA256: 6ff3bcc80dad4803cd7732d5360aa9dce91c3db59d7a73ba81a1ea1a2cd4d9c0 SSDeep: 1536:Ok/eNlDILYcBkwCHl1WNDwl8MXaBgncvQXnIWSHsIq4kp1cu:V2N1InBkwCzUMqCu2sG0u ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\oxLJgl2.avi	MD5: f0094a67174fa0bb7e1da7e9226b545d SHA1: d46809852d9a52adb7644d78086f1d2bc405b738 SHA256: 3bb5b2bdd7a88106d31877a499e4c56b8229ce3269d368b7c601d1720a488337 SSDeep: 1536:kmVYUkIQ6KNXsrVkk9bLe0cLlbtQ5/nu57SYckyMyw8o0pZwslc1O:xVYUk/NXsrtLeZtSuWYchZpZNlCO ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\FD1HVy\Videos\bUNH1f.avi	MD5: b38a182fa436e110e603ad9922e51e3b SHA1: 45cce471098df755b72162702f689bd50189bb9e SHA256: ae8f13e438c18b4f0bc90e10b758ca585261dab0eba1cebd1d26aa63444863fe SSDeep: 1536:sWvcSjW0/jw22Ck0dsB4mXcxc2X5Y7gAaPRcb1Wy/:sGVjHk0K4HqA5Y7wby/ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\Public\Desktop\Acrobat Reader DC.lnk	MD5: 5e2e0da1313d08613139a196cc7629c9 SHA1: dee331c51c4493d9bf7aa806c2b3ede88b768020 SHA256: b715cd3c987ba0ca6b27760dc10af99c239d68e4777c01217004155421f5ee66 SSDeep: 48:1G/ZvSb+4XxMZT2Xelai0aukSYceDl4gGIPjDQQ+F9c4kGxmJz+NH4J:1P0/z0aukW0hGIPHQQ+buGuM4J ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\Public\Desktop\Google Chrome.lnk	MD5: e11b92f9ea2a62ca35759e2b78199294 SHA1: 8c22183c3e574bfe62b526a1a913c9426c77e559 SHA256: b5f609a873f3a9e6b47d0731fd9b178c646a728f1693229b27897717c2d7a6d5 SSDeep: 48:R2knzokHCFs+OVvJuhlD5P7UhxbvCmBL4N8WZT8m:Mknzo/QnOlB7aEmukm ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\Users\Public\Desktop\Mozilla Firefox.lnk	MD5: c4999e213b6de8d3376c56e037fc7f7e SHA1: d61fad8edb47ef49fee53be0536b238a2acb4b25 SHA256: ef4062012da4e8293246ffbc9833acaa679831a9bb179081408df42e0137c534 SSDeep: 24:I2fmyl8qrOJj8z//eWnowB6cpLzqrEatN3lNalqwicNx1RTx7od41:I2fuPGb/LjBDsrzDVkcwicNx1Dd1 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Unknown
C:\Users\Public\Libraries\RecordedTV.library-ms	MD5: b7fe27595ea6fe9b502d7fa2e44cc973 SHA1: 9b7ba1fde4048433e86eba1e4da7cd529a7a4df2 SHA256: e042be3095743be26fbf54d8c90653e533e58da13f9b926149f2857bec347b32 SSDeep: 24:oKEm4D+Dlf2fTx85yWNe0e9oPnZfoxEtKcX5F9hv+GL2RK:ouLl+rx67NeDofOmKQ5F95kQ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Unknown
C:\588bce7c90097ed212\DisplayIcon.ico	MD5: e472ff2d4d87e9aec0f6710b215b5061 SHA1: a518f0b37506d337b0de2eb0710695ff6858154e SHA256: d868d74b3e5570dfc5508867f967c73fdbd45862510e5405ce9fadbceb05d3b2 SSDeep: 1536:q1A5EJkWwoaqlARGGEmf59pOcqOSGqugcE0T7U6RUtBUfwA+nSgtsm:qiEJEo5lwxtf590HOi2E0PUinSSgem ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\588bce7c90097ed212\ParameterInfo.xml	MD5: aba2944408bd2d0ffa3b40e55beaab30 SHA1: 7c088dd190bce08cd861d6be8409fd9fc4115a83 SHA256: 080a103c268dc39e06634852befeb0eafe4e4fdfff49d8c18cc87f5f9ab186db SSDeep: 6144:++VnQWxfqM/kanjKuVF3c3P9Z9aNOmlvp1XK:TxCMkEI1Z9GRbK ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\RGB9RAST_x64.msi	MD5: 674f556b9fa632464ac430b610c41a57 SHA1: 192c195175194966bb474eafb8e839454e0af5dc SHA256: a2d4beb1e1d18f1b8528e88f68d6c54b22e20ebf8f2460b0239a96adac1d01e3 SSDeep: 3072:QGqbQaS4qvPYklmHo7ODJEbOCmNvzlhYefawGDDkgPHdyl7StYxVJo0MH2DA:QLbbS4qvPYklWo4EbEvzDTawGPX9cStr ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\Setup.exe	MD5: 6ba3d602dd702954972e9f4055aa0794 SHA1: db0db5fdc1b614abee6c5153522c891986390e58 SHA256: 97c1d6a1f3542a5d6e38a230886f1d79648b2c8a6957806ee3273eea62f58318 SSDeep: 1536:XziYG5TEjQnCVefFOJ1ykJt9Z0+hYgC+rYsfRJ92vcJRVD/cY9:XmYUIQnCEOJrxygGsfpscz3 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\588bce7c90097ed212\SetupUi.dll	MD5: 8432e04ef7e0a618fa74a0bd33411799 SHA1: 7072a14951b39fc2cfd7f7b64603da193e1bee11 SHA256: 7cb7fc7010a32f70963f292f0bdf8225c6e2435f4de0584a2bdd6e6f5bc1becc SSDeep: 6144:T59epqyFeN6NNn0JjdJ19EMf9LSyxDBqvFZdU1uGxckqML:3epqyF3NCZ9EyMv6AGxf ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\588bce7c90097ed212\SetupUi.xsd	MD5: b8f3f5fcacb9b4051c0ab9f924fc2490 SHA1: 9b26dc777604995b1a1b7b19b4cc2a9f1f4f1519 SHA256: 8e6a6852a006b5c7476b103ac08ec37bad636752bfb2592683be27fa5177ecee SSDeep: 768:r1+2ZI7WpttTPgnd1IA0pMC6f6tpgZGhrIVj5P4ysK0EzD1GX:r1+qJtt7ERIVY+YWLEzDkX ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\588bce7c90097ed212\Strings.xml	MD5: 971eaeee3c353fd3e10912e7cf91baeb SHA1: ae63aa410a9370e019852a4ccd9cf8e98577ad60 SHA256: d90d8b05b43a0db28b44b1d3d5468b7a93dcdda67e229fc5fd8ec60adfdf0eb8 SSDeep: 384:T/dMsMQzQqa8ueA7aWKVXxYlWy1GyBINoxJ5HCLqGD:T/dJQqaHeA2WKVKcMGRCxJALJ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\UiInfo.xml	MD5: 79238c44fdcc045868bb021e5509684b SHA1: eefa8f4d4c353c94c660b312f348fbb4c3c82c41 SHA256: 28ab6254d6c6cd7f029281d0ed9e010ca20325781eeaa4362f620bc71e81d053 SSDeep: 768:T47C/6R4PLOpMgFUCBz5iQg8TvJJO4UE7oxzvotuzwc0+8dIv:8ZRv++i/2z9IxzAsR0RIv ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\Windows6.1-KB958488-v6001-x64.msu	MD5: 3285f16ec34bb2010c7229d39096d65b SHA1: beb8e5c71afc49c8a53a815819604aa1f8c1f3ff SHA256: 26efe7c67f4f0d66bef628824c4aafd246a129cc9ca15be2c0921bc1e2051fa1 SSDeep: 98304:BLI1L8WP5Ojd9p735BShIe/Y8Pqj1u3H70v8VHVeQzvpcRQ52T:BkpJAN737CIKHqUXAUV1dFof ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\netfx_Core_x86.msi	MD5: c6fa4e7da516c5eb2e9af5bad15accc0 SHA1: 0df7b870ef7963490be509395de9462204268931 SHA256: 3be96bf6767acd528435eeafcac006242402816c364327df33aa5172dec3d81e SSDeep: 24576:N+DWn3ZY5yT97Y1itMXKK53IUdA3lhveaUtcpA5:2WnpSKK5U7HUt4g ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\netfx_Extended_x86.msi	MD5: 0f71eb00a2ddb6279f9f44676848dc79 SHA1: 0f258157edb662c369e7b0390e182a9fd29c606f SHA256: c41ea25c23f37c6138bba95f1a18695df1cc0be314119426268c7676795eb27c SSDeep: 12288:7kl4m4iX7G6Tm2htTsCM00mOI2YU2gdjcoeu5o:inZ7G6lrsCMI/2Vds9 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\588bce7c90097ed212\watermark.bmp	MD5: 9d653b3f24efb9a95cd6aacb36b9242c SHA1: 7e6983cef994a3d9bb4ebf8fe56ac622b43e268f SHA256: 5137116f53d65706f231a60dbaa2fc7547b0054b3c531bf05bae409280fe14f9 SSDeep: 3072:oPk6m68cfeQe65fxmxrWK1Rl3T+XjgiGf/q:EkA3fneAp4r9Rlj+XjgHfy ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Application.evtx	MD5: 608a2ae990dadfe64774c39aebf09cba SHA1: 3d9824416533265d3b574af13a2a8a80ecf87cc3 SHA256: 3cca01030dbb115d21bfff61bdc364c70a634b2e1b812017e66343794a730a9e SSDeep: 1536:27ijxsp28EUA7/CiGWrzJGo3TkzlWYzrDrfqaFnh1VL:27cxxb+iFA3zmSVL ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx	MD5: 05fe0c883d31b567cc3c5d3afd22174c SHA1: 4feb780ce8d38f519ebc6fa345ad18f064ea86e8 SHA256: 263d0cef3574acc9f7a96920539f148aef299af40eaea6e1d2a3358590dd18e4 SSDeep: 1536:mChkL5HP37YuGSiBvfHZ0cEwSxa0omtph7BwgfXHIoR84Ecg0+YWI:CGSiN2cES0HzlBwUIQicg0+5I ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx	MD5: 62c1a45adefeda8cd4149e0d57789828 SHA1: 8e975a128c00151d33ba3bebb3aa1fe8d875593c SHA256: 6c46d84d9b2e42e0dd5a5dcd32a91c8815883f07a3669c4d1b6ed7c26dc48cef SSDeep: 1536:XGPhYEZQwz+zYRg6IfyMo7vmOQT/46PmRu4eRzAihXWbYE5CSlOQV01La:2pYEZF9RafrImOQT/ZPmRulp5EY04q0E ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-ApplicationResourceManagementSystem%4Operational.evtx	MD5: f3d76d3399b6fac764fc2add05914ba8 SHA1: 4b757221b8d7023080ec9d97b98844879fdceaf0 SHA256: 588e115d76153c7fb82e1347f2a05c17ba492889e917112ba5585c4252c3a47e SSDeep: 24576:HWAmGFh/fWMbYKYxpuYJBxRSNct4BWQl5qeqs8jEk+GKhAo:HWXGSM8KE1lycs1Nq5z+Go ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx	MD5: 12e2bf1583efd2ca215f5fc2539160ab SHA1: 1914b80d463c5397b03b7e978dfb885e53da2efe SHA256: ef2c387840043b8b6161cfa0b75ac7f85285a37e22070d41dc5d0ff4e41a00b3 SSDeep: 1536:yiGxYcdFJUr1iYtdaqhpUe7s94X+gm0ITETt1e/8hUGU70aLAGA6:yJYcbJ2UYnag5ub0TTtlhUuaLAGA6 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-BackgroundTaskInfrastructure%4Operational.evtx	MD5: 936b1ee58849aa2818124eee41e705dd SHA1: a9dd8a65a369bb2e7a9e605a9fd111d8bf62893e SHA256: 1032865796cb4df9b81feb4d56b4d489b030d000e75ba9736c2673d22244913b SSDeep: 1536:UBNxADdcc7N+df2lq0uwjNnyAKz0YnqMxjIZkIFWsGk:UHy6WwdYNuMuqMxFIFWsx ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx	MD5: 23c6d3c9bf89ba5b8e62272a46309078 SHA1: 4ccf83153b87e1ce9d4b6388da70388ded50d726 SHA256: 5040dbd32c9ed68e6b261febbbdfea20855fa4161cc5e77921783bf3bcb2f4df SSDeep: 1536:d1kHsjnzbTf+GY8qTBNEu3OLRdIat4WdNOMcOXii2OWr3CXQ:MMjnznf+GYfBKMOLRmatdNeOXii2O635 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx	MD5: e97540ca751b5f6c46ebd99305ff1ee5 SHA1: 9fb276feaa25401ca746d6747da5c6c00d209473 SHA256: 779941c8e3f0f7ab3ce82dc208be390c7047b38c879650a3583c5a550c20275c SSDeep: 1536:fbWrMfARRjjiEpYS7SYPKp295y7khYBwZD0XGODZa2Bb+:fCEuRjjiEpH9yMaOYBAODZa2Bb+ ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx	MD5: ec5bdd17a9203d61a31804c645b523eb SHA1: ca9f658b8ab72d4f36cfcdbe5cf2aa5577b4e566 SHA256: ea54e9b790fde520b96f10f49e6a4dbc38756467e94fd2e8e9d60b2a2165d3b3 SSDeep: 1536:pcSxzrwFeo9zr7KoRaymZoNaLTVp53KaXlK+4KOl:pcmyV7bo5jppBXlKxtl ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-Hyper-V-Guest-Drivers%4Admin.evtx	MD5: e5a6fd49bd2c9dfc63023ce21fcb18fc SHA1: c236361eb727d30b56c626f24c21bc17a58129cf SHA256: f2ef5585dc7d81273b8ddcb8e36082ec8c570beaf80e3d311aed91d0b197b594 SSDeep: 1536:cM5QTo4J6hp4w3C+VuwuFNPkMhuAv1ihZy1Mxs:uTH4hOmC+VuFN5huA9ihZyH ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-International%4Operational.evtx	MD5: 4e4dec024c1a061e1073b1067a0942e1 SHA1: bd14d3d9a5eab7416e2ae1e06a044cb1b31b62aa SHA256: b777c4076afa89f50489ebe1ea2a188e8468df2888cca480d61548826da0b68e SSDeep: 1536:+6bVbFQ8x2hxsxn0HARwbMijncrp5wj3uuPlM16EuDgCnYq1C:+6bV6MYyCpLcV5wjeEC16BDgCn5I ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx	MD5: df872a967b96ddefcccf1c9051235d80 SHA1: daae26e7bcc1fd3c2ce6c7d1ffbb25578db61841 SHA256: 164e2b872b6c6533d18426950c1b6cfb2cf38af63fc2c30b8b18454b35f9eb98 SSDeep: 1536:HeEeaIfMDg1ccvUfSRosM3IcDCwqHifh6MB4NbVwRHAH/7ca1E:/IUDSRRe3YVaShPL1E ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Microsoft-Windows-Store%4Operational.evtx	MD5: caf6fecbeb97dd4124cdb46721868315 SHA1: 25927f4cab5567ce39b2fde364b2540bfcad1b44 SHA256: d1c8cbe54b7183f45116bc64fd0b2483cbbcc3a794af1431364768bc3d332aae SSDeep: 1536:f+kGIUkK4GSHu3n+k3f4c4Z8BjKJwowW8avQnM:fArkK4GSQn+yOZ8BSwW8a4nM ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx	MD5: cee6d180669055d0a275c0f4a014c9a7 SHA1: 19dce13edfeff91acd64c1e027c47845c696b665 SHA256: f6a5ad354479fffcd38af541c255edeb9ebcb4795c667cb114c20571b4dae607 SSDeep: 1536:QC6PZwLdoQVufQhXVw1mrW5dy9PiyrQjzVvL2uMLjakVeIqQ5XrBUMRRgD7vm:QC62pJcfeVw89PVr6F2RLjaDJerRbgDi ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx	MD5: 0f98d505123f5db90f15a623843a6718 SHA1: 6a4661fb92c39972f9074ea092bc1c6924350bf6 SHA256: 42ca72c043549ab34695568e54c1be52061407967f110cdef4fb6da34391f848 SSDeep: 1536:5JCtTZ677RDgIRjDY1FN0DnzzNrCBhkUTO1FQFqqQwa36v1X:WttU1DgGUfN0DH2OTQIqQwa3iX ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx	MD5: 4d6116abb840be1ba4e0bd799e721218 SHA1: 82502769f9ea03b709188e130e1d87f892f2dd73 SHA256: 14c57e8461b550de4b0d8c728c2f4b598f16fc46d5517a6eb18b5b4094f3a74a SSDeep: 1536:d1kH44k+RLObJJBGuJZX2RRvPiK5luAzkVsa2:MYtUSb7UubmRxnjuAzkVsT ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx	MD5: abfc0ff94b3f19c6191d48aa5b25cb5c SHA1: 1745797077794a3294a0df98387a742d32cab526 SHA256: 3da823354f4e2dd9781e30b66f5b377468e1fe5caccd44d4a5f99e6650feaee0 SSDeep: 24576:8B/4HHkUnmghHKL+RbiMvrfQwmexy1QAxqJheVkY1FAOc:o/63xEK58wmSy1QAqJheVkEpc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Logs\Security.evtx	MD5: 8e20ae60505990c4cde737c3ea83472c SHA1: 45107591f5ca1c7f91d5e01efa4938aacb665078 SHA256: 8a980097cad058d8b8166c650dccb2140cdfc5cd7faadcf4669659c17d18e8b4 SSDeep: 24576:n7pJbwbp7a9RxN5nRSPAKAO50d07h86cMOvVXRFJG:n7DEBar5tKAOz7m3NI ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Logs\System.evtx	MD5: a4184a62d8efde39a0cae15be9dcb50d SHA1: 897ee2c174e3da7a191f89e0ee4489847eb6347c SHA256: 7d8da551c19b65566a684e7fa70b142e6bc03808bf5cdfaa57d7f45263c1ea1e SSDeep: 24576:Zj5w1Tj+9U+PJXiKrtUksWDyQQmv/A77Jz/qtBz:1YSFJXLNDDcJvJz/k5 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\Default\NTUSER.DAT	MD5: 2f2313ace16cb7017510b3ee01922875 SHA1: a6193640b0b533e2da6a6d25fcb02097d3a3fd47 SHA256: cf56109eec2d090741c34aca7d55202adf5d9e874df6100a22d417135e4f89ef SSDeep: 6144:GEDVJEyymD9lwvmKRby+8GiSCUKLASgx3PLR7aEG/acMzRVz:DVJVY+KByoVtKLASgx/haEqfE ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\-1hP0IuZkn4rYey4kCgi.gif	MD5: 4cfa10bada18b1da69973e03a3765e6c SHA1: 798eb02f69608927f9a284a0a29e4173340e2ce1 SHA256: cbde95064258cd318588479887d12aafffc2f5a28b6d48a06e931829a45a96d5 SSDeep: 1536:+vN4n+dapaidlV8+JdHfF4EeZMVXKyL7Sfa1Dyuz0i24Y2L5T1YLopF+9ljJai9v:/gxidlV8+l4ErFSYz0i4bLsF+LjJ992Q ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\3e9e611Wz.mp4	MD5: e84e6404ce4af3c6d31e30a27223f3c7 SHA1: 93bee1eaf4ef2cc4338c3f2404613037fb486c59 SHA256: f62a4baca73af8ce4d7b0b8df9a85f551c43154b5929ce227ba84eb307c7b039 SSDeep: 1536:tDwb2WaJePjf7EGa9aK7gS5ostoh3NMM5FguSCjphN:ub27Jerf7EGa9/gvstodNLFguDHN ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Desktop\FdlbssLGxIymr-m4DNOD.xls	MD5: dde654fec8f20803382476d110e0aea5 SHA1: 04053cffd74306348e4f36fb6e2b5c52402469c7 SHA256: 1fe7a16077740e464ca0ada0d36feb2a396a11e8cc0a381dc5255aa03f485707 SSDeep: 1536:S9CRK3uGwnctUrOLBUhPzAvSgBuYW54ACrWr:S9D3uXjscyBuYW+ACrWr ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\JpiGgB-lScKD0.ots	MD5: 8c1913549d93bf482184ec82143c271a SHA1: e2344bd8d1881c0f4a740c6415564a1a6ec175da SHA256: 4005eb88659cfd49d8a08eeb7f8b76d066d2cca0e53d388580647f1444f3eef7 SSDeep: 384:S4uzoPogxPpaRqoEqYw/YLmKiE0UTsf4P:ZuCoJR6qYhxiEfQo ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Desktop\TpynWVBMzarv89kpQH9L.ppt	MD5: ae43daf97593144da704046ac3867078 SHA1: 3be96d7f734d392dca96ae65e52be33ebb0e65f2 SHA256: ce45acc22b26ea0b1b9a2e92e594a5fd422d4e756513325b6b542e9344080421 SSDeep: 768:7Kh7TW8j/qdwwPjvT1ljEcsjs1e+3PptDvVjVsJG8K:7KkPjb1lAcd1znD92GF ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\XZ79.flv	MD5: 3f4db66401ad8b865ec96419b0d90120 SHA1: 6c14c87a2014b2f04c22ff8b0e2dd7d87bb6a76e SHA256: 31795946f4379ea4479f143411db62e30849826225ea7a2bdc2a972b7656fc88 SSDeep: 384:f8lD+i2ioOF5rTgSwhSn+LQnmvNDBxQLgzPEvESwqRbePiFWsnTG8uR9by6gSEzv:mlF5ZwhtcCLP7MZTG8oxyHSZYgwB ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Desktop\Y_oeLdciAk1.csv	MD5: 6d84523a8e07d5157dc276fe5c5f33a9 SHA1: 7afe8c44a0a9f5aad9f8b516fea71b82ac2c5bf9 SHA256: f474fd7cfdf2dffb6fdd842f70c42fb36a561a0af1cf5c5283aaf45d04827830 SSDeep: 1536:Af71aOTtBVgI0eYYCas7MTqPJMfY/YXmn6GsZc2XooPrC8/Zog0u/tiA/EENnT:MaO8ebCyGPJMA/Wue1XbP+u/tiYEENnT ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\grjU 23.mp4	MD5: f53c91b7508aaebacf7a005a7730d53c SHA1: 3c4b30badba16e55dbca031b433e1257901eb457 SHA256: 8c5a89ba97e9d6649a9250d6372aac0d441c4d2f4e7e1b496036b5f3d6efe5bf SSDeep: 384:myIXqEcYArGBDmz/qmqE+DwRtA4i1RgsWiIaYbGHMXrr1/7kai+z:mYJYARz/5q9OSpW1aY6HMXrrxv ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\iyKh yLWod0M4Fh7dl.avi	MD5: 05ae422df506034a3948553bae9bcb11 SHA1: 3d71f1825c95aca44f9a113ff7d26cd3e373ff31 SHA256: 9bed22ae63fe3dadd68c5700328b2d9efb9134b043f2408d57ac0e1f6b60dc11 SSDeep: 96:Vn0srJ5MhrPQYKMLiEzamf2GL/pXZdl1uMT5SYeFML95Y5iSGWDbU8XiBOYiu:V95yrIVfs+GdXZ1xYzFEeixa4qTTu ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Desktop\kzSf2Yq3eV0zpg-E.png	MD5: 5bca371808715772f02cdec599369420 SHA1: afcf1a5f6e81819e9a03a661db8dbcf1d6603bf0 SHA256: 8ff1848aaa1dfba2ab913a464afc4b4f9e9fd6c59813a5dbaa51bc9b45f880a0 SSDeep: 384:tqFCmyIOFXln8QufgAqPyhEzAGOpjfhUB2bc:ECrIwXJAgAqPyUIThe ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Desktop\sodlPy.wav	MD5: 94cf91007b53a17cb0ea424bdc3e8b25 SHA1: b654d256f13a3bf977ba1b965de57df8cb62a509 SHA256: 0e5bf39b1a8597a195f400a657949234db67f5f52ab7035c157cb62ad36760ed SSDeep: 48:ZS6rfS1xSjqm5PAke688xQWBf/ROpMGQyKlAvYOStU3:8a61xqZAkzrQMsSGQBeKc ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Documents\HCsDv_3Al2o6.docx	MD5: 0e91d6f288598d3ab9eb4df513e82070 SHA1: bb3b4e311809262d126191bc1e6799cd654d1e94 SHA256: b1a67a70ba82f2887ce547925557bee1074e44c6b74718262b8219f7ba18e503 SSDeep: 768:VK+fiSu+WxcXiLwFCEAlMsgtYbtAgt71FCdfbBIEIiscg00Wdj8DMQ1PQmgJ8368:0+zWkC3lEtMnl1qIRcgJWdwDimgJMJWk ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Documents\UqVL5z.pptx	MD5: c0dbc1f33340627c56fa2acabb1aec48 SHA1: 0d2ea77e27067089a21e908002492040493065db SHA256: dac95f8fbdc7da5c1614a96b95fb1ece2f5293eb0ee2cba34e733c5336e153c6 SSDeep: 768:xHyk44d/PktsCsVd4E6/bs9pVy/2l68yfuqAwHXOkah4FFdpc2RxB1EGALX4+6Yq:Fy0dkKwEASp28yfuq+RKctgoOctqZZkW ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Documents\WDgHEK6RgOX174m.docx	MD5: 50906fa7b18494647fb787bc5f53871b SHA1: 97607d701add72e0f8fdccb8e04f8567dc337b03 SHA256: 347898d13c19585a222cbf7024533fef7fb5fdb9306f91c372b338c6767633e6 SSDeep: 1536:UgMKJZjIYO1x55xF+GWXcuxwWoKtmR7Fd1FG3tiqexw3:ietIY055X9HAPtsdnGdiqexw3 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Documents\hV5S0QdiHwJKhjJJW1b.xlsx	MD5: b29617480b92ed674af150e22ac7f068 SHA1: 8bf5a66f896ad7b7b3ed764beccf176dfd8b96e8 SHA256: 3c3e2d8129cb43a4feb6e0060e6997c3c56735a585a4310a6c38fc6500d117f1 SSDeep: 1536:QKUgd+MerNo1mqldDoedrAthD0YyVfPXCI16+oBgchYa6/2psyW:ZUgd+NRo1LldxGGHNzGBthYP+psyW ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Music\4i8vygLoQaTE2.mp3	MD5: be809e89d54bdc0c76bb927393ba5f72 SHA1: 83e1603415beebf4dfa8305aafe86ed33980a462 SHA256: 63a7629d9cbbff9bfb4dcc89e4b3d0caaa9bf7e7fec8d4a1f2b57cc74cee8f07 SSDeep: 1536:5j4CsZPBjs4n/BsmreZWeUAZirIgMzEU2u/EvF0ke8zJxxJnMAzh:5j41PB4QeAAZ/zE7u/ERdJdnMAzh ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Music\O2rElhDyf34vJp.wav	MD5: 64d5dac93f9ed533d67f191bdc8841d9 SHA1: 67e08e985df3d8f3778d43ab5d00ceea7ccadd32 SHA256: 4df302439053e816737a5edf528b46356851ba23f9e46001bec1df6a6733e617 SSDeep: 1536:QugvPyhpFldBD9f/RSu5pDXZsJ2uvXU4kJrXA6FtEnPbd2:LgviFrR9RV5pDZsJ9vk4k1XxzEPp2 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Music\pt2k_XbpWFj.mp3	MD5: be9ed011e61bc39d4f0e8cff17ea2945 SHA1: 2fb7a53706e063b9bce2a3d254dc740f0be495ba SHA256: 849dfee1f27f44bdbcfaa980fe2c3fb3d79ee9201fd73fcaded218869f3204a3 SSDeep: 1536:pQ4/GnLCMxPJlx3JAWd8tYQ1+cfNv8BRWMPr+ZhoGIpMlInhoL:pnsLCejxd02clkBR7+ZhRIpMaQ ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Music\rpOSt_\DEZ3.wav	MD5: 18f206a4fc0e7169411b4ab495099305 SHA1: a820ce3bd7d608f04eed63679430c92ad25b9664 SHA256: 18e9b320e2c0e35a8628607a25c5264133011745f96cdb21829164d069b360df SSDeep: 1536:DNZ90iSN6j+o5gG7mKkQ8gNFrCCD/BLTZwjCq8:xZ9o0qGYS+0BN1 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Music\rpOSt_\X6eKNKV1057.wav	MD5: 0d57fdad7a459971c82226fa9fb36404 SHA1: 975bed89ef5afefa45ec1bdc2207b0fd0bbd646a SHA256: 2f85430ee17b05a41c2b0b2ebb5fb5c7e4da6c4a81925e0207602b55503317fe SSDeep: 768:sYlixoRDqtITZMgRPhNlDb3oFIQf07nE6GFgPNht9VQXsK1:sYKoRDqITugRFQviE6IgPNz9G ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Music\rpOSt_\sJ9SNQKym2WPzEvbqaL.wav	MD5: 089aac7f1590b9673d6642c1ee662f52 SHA1: 3eecd78fe09146be61c022c612b846cacb84974b SHA256: adbdaf8d310051d2a0fed919fcdea5f53fbedf254d5c7e2acd0446c9c1017f6c SSDeep: 768:2fIpcmds5SjyUuLwH76aeNJxN7sYoxSItac863tb4zZm9MNdHmjrdi0z5dEmRyL9:sosojgc6DRl83tqjdHkrkLLIXYsTlIdt ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Music\w3moxC.m4a	MD5: bfd2ebee0f28e685ddc37921ab9c6f8b SHA1: 62f2465b5e4c17f430cb3c39b227e89fd0e63c98 SHA256: cc75b96627fd7979d7c7737569d6248119f42c7dd91735c2d403e92a3a1b9a7b SSDeep: 1536:gdVwIp9iq7GEQb7NpmAgLCdz3UffHoyTZuO7PBRFpjVoj8L5gS7:gdVwYRKEQb7vW+z6/jTxpF ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\7eySl\-aAnkyfs3Bci_.gif	MD5: 86a77d527ab28a5da5c55973c04d87c2 SHA1: 1ac2b066270049e1c031e6a3f23d62b845d7ccf1 SHA256: 6dbea46b21dd5506212ec2574a492f376ceb255b37a02f0726194fdb2bafe3cb SSDeep: 1536:6V9P3iVC+RQRfbBqZZASo7p3gIANBGhFcxT4dMwU:6fP3iVCowdq7ODGBGsxEk ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\DNpf5l7QpazqPp.bmp	MD5: 2c4206017ae1bf701e1a49f6d1b73bdc SHA1: 0fd3e8f41640b255ff78e4d5c8bd63ca6339d9ef SHA256: d244eebfda4cd88598a1d267e5ec22b082d6753a4392ef5c777016642917789b SSDeep: 192:xGo32+CU+vl16hBzfyrKZg9dV0u60Eq+AlC5:xGj+CUc1dKZgGCu ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\7fXxS7NVLs3ITjC.png	MD5: 64c9f9fb37493d7fda379d5aa8512b73 SHA1: c535b921f932d1a4edd6c03435c3e037e61b56e8 SHA256: 9a8f4593b8dc2040ccee2a87c2994d8b7e10fd71f1bdd14178ea03458f7b7757 SSDeep: 1536:W6SV5Oi1mB9xMyDsaH3aicKfgYQAw6iuBP+TnbL5pGp+DHKZehL:YiWg9xHQijgAw6x6hpGcDHKZehL ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Pictures\Gsa2oY_pb9TDC16LX8n\arkXS3V9D9ckaJ7r.gif	MD5: 8cbddfcb2ff42261a12d9ad72b7c1d85 SHA1: 0c4eabcac6950bf68c3aad73ed390f7b2d6893ca SHA256: 187497a187e6c1134ef47fac46aa674f807dfd12eb55932895562b3fe94f5614 SSDeep: 768:FQkgSxXz0qKQg9Lk0ftzvIn9YzF+k2sMxZdW9CJOgBoMYxU:FQkvRAqKRBftzw9YR+k5MxZo8T6U ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\2rd0tiXmII.jpg	MD5: 81c37fba73de1aaec70501fb0c22fb48 SHA1: 859553e38842a8b5910f7933589a496fba2fb92b SHA256: 696165c4dd83abd322234727e9a2bc36e14fe6e2f3bffea5fc473c6824658953 SSDeep: 1536:kg0lv0RyO78rOh86Aq4IhFRmrHNQ1nsdZB:8CyOIrn6AqBoBQ1c ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\HcBZ5X9vP4ljTeEw4t3j.png	MD5: f1f162d7a73151a7317633fb0312617c SHA1: 4e25cd2b84974245cd36e1e41e31bf70ead8ada4 SHA256: 6ea9101051d73a31dbe7c8cbb281cc7a376ce4de4d89fa54b3ea5aab27dc4711 SSDeep: 1536:gHpxDKhxk20/QrlQ5AzSM4mrXE4ct57tWJSiJUBnjGXMHCoRx/0yRySE:Yx+h6Hai5ADatHgZAn5HnR50yW ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\OE9kNMuK3Grq-cS2aT.bmp	MD5: 8a0f1219d72e1ac1afa47258883e9d7e SHA1: f1d2bbbb1a8e85227ee4d6b79d5c48fef7eaa252 SHA256: 91a0fdaba4b3af7c28b9d8b1dc08dfe97cc17260906b56800afb48fefb59fea4 SSDeep: 1536:2EuXhf9qP6Czk0qPS9DKdO7dk7GqnbCoL54xfKS4qusPk+kenAcSG3vHD20M95ug:2EOqPFk059DK4k7BGgsP4qhk+kenAcSv ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\iOlqa6S8EqyVMH6X.bmp	MD5: 57712a15d8e4eb51b0b482ed39064068 SHA1: 98d56f2b53ea365c6b3f7ae14cc4b78ecf47fac6 SHA256: 6320c5118bd6acba146d4bbb446c61476ddd875ea5d0eba90d62142783257817 SSDeep: 768:OkbdCNH1MS4ACUPBM1xsx6X5ZizYl6PByEWVO43d3V3dS9yns0SXk2L6k0BjH:OQd/oCfsY5EklmBlg53fdeRXXH0BjH ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\UJon3.jpg	MD5: cc483c25bdfc06f7c0fb3c507d3c1a9b SHA1: a904efcada08aa9790c26606a7b31df86b2a7e6e SHA256: ae19b3983cd6552598cce26ffc2ef04db02b1f3d8cc14e3814677c0463f0fd86 SSDeep: 1536:1KF3uwJBmwkmR3dTIa5vs29JhWeC//dLN3v6TsEwPrYf:1KF3uwjhkQEad7VWeC//D+aDK ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\X-S7pEkBPQta 3-jb\Cc_4M-qD9tsaa98.png	MD5: 739b52b1169c3c6182532791054bc2ab SHA1: 51b0bd2d38a0ba0bf2bda9c73c1b474112b58852 SHA256: f99e4e25873986a17bc3a52b215c561110bf95583ec01a357773eb9602f6dffd SSDeep: 1536:YysiChZWsHYPs3+JfAi06EJ5kPZHNwpjpCJt7:T1aZX4Ppfq6k5kQo ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Pictures\H46iRJ25FXDr4Qi\x-ys\ppyXAFVoQtqnow.png	MD5: 7757297bb498b627da45dd30a9c12286 SHA1: 932e2c737d50ed7ea0f891eee86c6760a5f90d89 SHA256: 3d4cb58f195b67b11d037cbf4e306cbc1167d3b8b0f24a6c58b3616daadf1395 SSDeep: 768:HYfijpcXnzB0N9wN+gS3q+KLbCloTX7N3DTt/uSprNNDYBlB2:HHOnldNdSajLac79PFuOrNul8 ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Pictures\pbhDl1SY2n 6Lmb6w6m.bmp	MD5: 7bc2c65650aa09601ca708318272222f SHA1: 527633ae771334279ef25cdf6a10a0c63a66a0c5 SHA256: cf5688090b754ab589885c3e9e2e133ba9d984380f9d7339920c38afda8b6fa1 SSDeep: 1536:8aJVsdFmaolzXra5bsIWjQCZ3Nwcft/TJpKNkR1svA:P2OzXra5IIWjQ69XqYS4 ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Searches\winrt--{S-1-5-21-1051304884-625712362-2192934891-1000}-.searchconnector-ms	MD5: 5f25dca7ede91341cdf7354834742119 SHA1: a4a4c87c698c683a4338fe3dbf07cac34cc557d3 SHA256: 6bf256d04f55652b1a657b8fbdb74cb68cbf503a54e82ed1fdfdedca6ae1d5b3 SSDeep: 24:oKEkIOald/95fotpwCAVUW/1RceUt+YV0y2l8Amoc:o7O+5fobwLUW/PrqSy8c ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Videos\A6-opF5rw_OVKAv\j2Nvg62knP7SA4_Kax.mp4	MD5: 82881c5005507dd03c541d28bde87e51 SHA1: f6dd1f29e103f4691c02659f62c19d49d69b7392 SHA256: c926e895f9615d8db8cbaa75c38f43615ffde97e1982ef7f912ebf49af5f765f SSDeep: 96:uiWjaz32yDaWyfHFUd1CYrgppPUtkdeNIZja+rkTNsIFp4Yy:6aTfDaFlUdxrgppokdkmjhqpI ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\-2XlHFR4FPwc8.swf	MD5: 7bf1abbb5474b17acb4965a5ecee27f7 SHA1: 10a87ab7a2672876fbdc6b51d19b84f6051e3a14 SHA256: 39d48e800fbdde01a8714ac47a34352d0a58c52a946f06f5abbc9102e31b624c SSDeep: 384:3P3VgsOLhxQz2fzqlXcY1mqFmSt71BHROQWTZZNBrmVKz4dDRh:3Pm7LQzUKXnLtxXnWTjIKzcDf ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\I hUmkkFKZVpFXqrXWK.swf	MD5: afb72ffb091cf577f30c1ddc55029637 SHA1: c9696d2fdcc549a169dadcd6ca3c393602199461 SHA256: 3732deb29589db4b66a9313352227e3eaeb290d5f2f4795dfb558c33a2a07fa9 SSDeep: 384:SXlEyNs8CfAHb5NFZLcZE+CWWWq34AfCcR:wlEICYbbFZLK4WE3FfCS ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\_pKm\wBWq5HlZcU290.mkv	MD5: b4d67e2cd70670efb6e20c2ca81eec5a SHA1: 17d5a2c2e57d93744e88e68e5e2461105297c532 SHA256: 3a8b92607737d770b7581ad83f677620f3d274c44d7c3af4acd42b3ca0cf8a23 SSDeep: 1536:eGp5ZbEM4pDFa6BWIDlafuWZbX0lwmVKfbiAOOrrx0jRlVrenIJ6UzMsg0BwH1Vd:9CRqmIzSemVKfzZeRn69UzWKO1Vd ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\KiZm0ErAKADzc.mkv	MD5: ecfac8c851b0018e3394aebb2d4169af SHA1: 04e3bb1685498ec9c8765ff03ded1bd611394f64 SHA256: 752f55cb5c9bd613eb4ea1c635644f57149ca25e29fb51c27d1549c2edf9c865 SSDeep: 384:glQOjdXBqO+9FU1kXjIzvDlue826QoQv+1cspZzsC:hId/+9FokM1uerXv+VHzd ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\Y-xC.mkv	MD5: 74d6a51414adc3390d611b7454cef57e SHA1: e09408a43d2fb5766f651b23b7cf0c3bcde632da SHA256: 1c259443832ac7fb4201a28f480ffac4cd4881403d39d3e94d53f17c58223deb SSDeep: 768:U4IdUXAI1eQtkkNz/EX2aGa9tIw4SSZgRV75Z6AoXn7d/isyN+MY+ciwp9srCmFl:+UXHBh+9tOfZe7iAs7csyN+MY+ciHb ImpHash: -	Access, Create, Delete, Read, Write	Dropped File	Not Queried
C:\Users\FD1HVy\Videos\PT1_h-__A9fKAj\lgAUyPNYU0vp1b5XhtEj\q1rfl.flv	MD5: 6401a48450d9f13506c2e8252c659259 SHA1: ffa9921b389f075a509a3be8e06888571c6e308b SHA256: e9d9e574886462b6645a5cc635c4e3ba1ee0432c13bfc856a70f5d6e436e79b2 SSDeep: 1536:U3ciRwbjZBihjXw05tIc5401+lXoWndN0i8M1CIhZeqEy8RJCFWDspcHWdMDRfPz:U9RwPTihjXw05ec6ld1Bh0x4SycHWdMN ImpHash: -	Access, Create, Delete, Read, Write	Modified File	Not Queried
C:\	-	Access		Not Available
C:\$WINRE_BACKUP_PARTITION.MARKER	-	Access, Create		Not Available
C:\588bce7c90097ed212\netfx_Core.mzz	-	Access		Not Available
C:\588bce7c90097ed212\netfx_Extended.mzz	-	Access		Not Available
C:\BOOTNXT	-	Access, Create, Read		Not Available
C:\BOOTSECT.BAK	-	Access, Create, Read		Not Available
C:\Boot\BCD	-	Access		Not Available
C:\Boot\BCD.LOG	-	Access		Not Available
C:\Boot\BCD.LOG1	-	Access, Create		Not Available
C:\Boot\BCD.LOG2	-	Access, Create		Not Available
C:\Boot\BOOTSTAT.DAT	-	Access, Create, Read		Not Available
C:\Boot\bootspaces.dll	-	Access, Create, Read		Not Available
C:\Boot\bootvhd.dll	-	Access, Create, Read		Not Available
C:\Boot\memtest.exe	-	Access, Create, Read		Not Available
C:\Boot\updaterevokesipolicy.p7b	-	Access, Create, Read		Not Available
C:\Program Files (x86)\desktop.ini	-	Access, Create, Read		Not Available
C:\Program Files\desktop.ini	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT.LOG1	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT.LOG2	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{4e074668-0c1c-11e7-a943-e41d2d718a20}.TM.blf	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{4e074668-0c1c-11e7-a943-e41d2d718a20}.TMContainer00000000000000000001.regtrans-ms	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{4e074668-0c1c-11e7-a943-e41d2d718a20}.TMContainer00000000000000000002.regtrans-ms	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{fae9930d-933c-11e7-a51d-b808901d6c9b}.TM.blf	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{fae9930d-933c-11e7-a51d-b808901d6c9b}.TMContainer00000000000000000001.regtrans-ms	-	Access, Create, Read		Not Available
C:\Users\Default\NTUSER.DAT{fae9930d-933c-11e7-a51d-b808901d6c9b}.TMContainer00000000000000000002.regtrans-ms	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\FB0D848F74F70BB2EAA93746D24D9749	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Sun\Java\Deployment\deployment.properties	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\LocalLow\Sun\Java\Deployment\deployment.properties.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\ConnectedDevicesPlatform\CDPGlobalSettings.cdp	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\ConnectedDevicesPlatform\CDPGlobalSettings.cdp.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\IconCache.db	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_DNTException\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_EmieSiteList\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_EmieUserList\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_bingpagedata\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_iecompat\IECompatData.xml	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_iecompat\IECompatData.xml.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_iecompat\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_iecompatua\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_ieflipahead\container.dat	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\CLR_v4.0\ngen.log	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\CLR_v4.0\ngen.log.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\CLR_v4.0_32\ngen.log	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\CLR_v4.0_32\ngen.log.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\Credentials\DFBE70A7E5CC19A398EBF1B96859CE5D	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\FORMS\FRMCACHE.DAT	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\FORMS\FRMCACHE.DAT.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\GameDVR\KnownGameList.bin	-	Access, Create, Read		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\adal.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\adal.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AppBlue.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AppBlue.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AppWhite.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AppWhite.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AutoPlayOptIn.gif	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AutoPlayOptIn.gif.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AutoPlayOptIn.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\AutoPlayOptIn.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ETWlog.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ETWlog.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ElevatedAppBlue.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ElevatedAppBlue.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ElevatedAppWhite.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ElevatedAppWhite.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Error.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Error.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileCoAuth.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileCoAuth.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileCoAuthLib.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileCoAuthLib.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSync.LocalizedResources.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSync.LocalizedResources.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSync.Resources.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSync.Resources.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncApi.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncApi.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncClient.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncClient.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncConfig.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncConfig.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncSessions.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncSessions.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncShell.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncShell.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncViews.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\FileSyncViews.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\LoggingPlatform.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\LoggingPlatform.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDrive.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDrive.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDriveLogo.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDriveLogo.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDrivePersonal.cmd	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDrivePersonal.cmd.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDriveStandaloneUpdater.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\OneDriveStandaloneUpdater.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Core.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Core.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5DBus.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5DBus.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Gui.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Gui.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Network.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Network.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5PrintSupport.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5PrintSupport.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Qml.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Qml.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Quick.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Quick.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5QuickControls2.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5QuickControls2.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5QuickTemplates2.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5QuickTemplates2.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Svg.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Svg.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Widgets.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5Widgets.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5WinExtras.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Qt5WinExtras.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaCritical.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaCritical.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaError.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaError.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaNearing.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\QuotaNearing.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\RemoteAccess.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\RemoteAccess.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ScreenshotOptIn.gif	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ScreenshotOptIn.gif.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\SqmWrapper.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\SqmWrapper.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\SyncEngine.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\SyncEngine.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Telemetry.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Telemetry.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ThirdPartyNotices.txt	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\ThirdPartyNotices.txt.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Warning.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\Warning.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\WnsClientApi.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\WnsClientApi.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\adal.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\adal.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\fabricmdl2.ttf	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\fabricmdl2.ttf.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\libEGL.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\libEGL.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\libGLESv2.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\libGLESv2.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\msvcp120.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\msvcp120.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\msvcr120.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\msvcr120.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\sqmapi.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_1\sqmapi.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppBlue.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppBlue.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppErrorBlue.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppErrorBlue.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppErrorWhite.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppErrorWhite.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppWhite.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AppWhite.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AutoPlayOptIn.gif	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AutoPlayOptIn.gif.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AutoPlayOptIn.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\AutoPlayOptIn.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\CollectSyncLogs.bat	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\CollectSyncLogs.bat.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ETWlog.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ETWlog.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ElevatedAppBlue.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ElevatedAppBlue.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ElevatedAppWhite.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ElevatedAppWhite.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Error.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Error.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ErrorPage.html	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\ErrorPage.html.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuthLib.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuthLib.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSync.LocalizedResources.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSync.LocalizedResources.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSync.Resources.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSync.Resources.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncApi.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncApi.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncClient.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncClient.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncConfig.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncConfig.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncFAL.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncFAL.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncFALWB.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncFALWB.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncSessions.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncSessions.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncShell.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncShell.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncViews.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileSyncViews.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\LoadingPage.html	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\LoadingPage.html.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\LoggingPlatform.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\LoggingPlatform.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDrive.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDrive.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDriveLogo.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDriveLogo.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDriveStandaloneUpdater.exe	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\OneDriveStandaloneUpdater.exe.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Core.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Core.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5DBus.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5DBus.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Gui.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Gui.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Network.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Network.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5PrintSupport.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5PrintSupport.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Qml.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\Qt5Qml.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\adal.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\adal.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\alertIcon.png	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\alertIcon.png.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-console-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-console-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-datetime-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-datetime-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-debug-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-debug-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-errorhandling-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-errorhandling-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l1-2-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l1-2-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l2-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-file-l2-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-handle-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-handle-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-heap-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-heap-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-interlocked-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-interlocked-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-libraryloader-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-libraryloader-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-localization-l1-2-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-localization-l1-2-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-memory-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-memory-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-namedpipe-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-namedpipe-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-processenvironment-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-processenvironment-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-processthreads-l1-1-0.dll	-	Access, Create, Delete, Read, Write		Not Available
C:\Users\FD1HVy\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\api-ms-win-core-processthreads-l1-1-0.dll.arnoldmichel2@tutanota.com	-	Access, Create		Not Available
For performance reasons, the remaining 3607 entries are omitted. The remaining entries can be found in ioc_export.txt or ioc_export.json .

Registry (24)

»

Registry Key Name	Operations
HKEY_CURRENT_USER	Access
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections	Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework	Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\LegacyWPADSupport	Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727	Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\SchSendAuxRecord	Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\SchUseStrongCrypto	Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\System.Net.ServicePointManager.SchSendAuxRecord	Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\SystemDefaultTlsVersions	Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections	Access
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	Access
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.NET CLR Networking\Performance	Access
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.NET CLR Networking\Performance\First Counter	Access, Read
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.NET CLR Networking\Performance\IsMultiInstance	Access, Read
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.NET CLR Networking\Performance\Library	Access, Read
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.net clr networking\Performance	Access
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.net clr networking\Performance\CategoryOptions	Access, Read
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.net clr networking\Performance\Counter Names	Access, Read
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\.net clr networking\Performance\FileMappingSize	Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\.NETFramework	Access
HKEY_LOCAL_MACHINE\Software\Microsoft\.NETFramework\DbgJITDebugLaunchSetting	Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\.NETFramework\DbgManagedDebugger	Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion	Access
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\InstallationType	Access, Read

Mutex (1)

»

Mutex Name	Operations
Global\.net clr networking	Access

Domain (1)

»

Domain	Sources	Severity
pofig.top	Function Log, PCAP	Unknown

IP (1)

»

IP	Protocols	Sources
199.115.119.111	TCP, HTTPS, DNS	Function Log, PCAP

Indicators

Before

After