Automated Malware Analysis Management Report for bZRL0uttVu.exe

Overview

General Information

Sample name:	bZRL0uttVu.exe renamed because original name is a hash value
Original sample name:	22a164ed481ba88df26ce7e819f2240d7fafa5b6ee2cd2993cb5fae3d566be7f.exe
Analysis ID:	1542685
MD5:	a7be144ff0b871ddd45e1e0bef06faa6
SHA1:	811797d3e0ce7c5ed76ff656156a2c066f306032
SHA256:	22a164ed481ba88df26ce7e819f2240d7fafa5b6ee2cd2993cb5fae3d566be7f
Tags:	BlackMatterexeuser-JAMESWT_MHT
Infos:

Detection

LockBit ransomware, TrojanRansom

Score:	100
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Found ransom note / readme

Malicious sample detected (through community Yara rule)

Multi AV Scanner detection for submitted file

Yara detected LockBit ransomware

Yara detected TrojanRansom

AI detected suspicious sample

Changes the wallpaper picture

Contains functionality to detect hardware virtualization (CPUID execution measurement)

Deletes itself after installation

Found Tor onion address

Found potential ransomware demand text

Hides threads from debuggers

Machine Learning detection for sample

May modify the system service descriptor table (often done to hook functions)

Modifies existing user documents (likely ransomware behavior)

Overwrites Mozilla Firefox settings

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Tries to harvest and steal browser information (history, passwords, etc)

Writes many files with high entropy

Writes to foreign memory regions

Contains functionality for execution timing, often used to detect debuggers

Contains functionality to access loader functionality (e.g. LdrGetProcedureAddress)

Contains functionality to call native functions

Contains functionality to clear windows event logs (to hide its activities)

Contains functionality to communicate with device drivers

Contains functionality to query CPU information (cpuid)

Contains functionality to query locales information (e.g. system language)

Creates a process in suspended mode (likely to inject code)

Creates files inside the system directory

Detected potential crypto function

Enables debug privileges

Enables security privileges

PE file contains an invalid checksum

Sample execution stops while process was sleeping (likely an evasion)

Sigma detected: Potentially Suspicious Desktop Background Change Via Registry

Uses 32bit PE files

Uses code obfuscation techniques (call, push, ret)

Yara signature match

Classification

Signatures

AV Detection

Antivirus / Scanner detection for submitted sample

Source: bZRL0uttVu.exe

Avira: detected

Multi AV Scanner detection for submitted file

Source: bZRL0uttVu.exe	ReversingLabs: Detection: 89%
Source: bZRL0uttVu.exe	Virustotal: Detection: 88%			Perma Link

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 99.8% probability

Machine Learning detection for sample

Source: bZRL0uttVu.exe

Joe Sandbox ML: detected

Uses 32bit PE files

Source: bZRL0uttVu.exe

Static PE information: EXECUTABLE_IMAGE, 32BIT_MACHINE

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Videos\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Searches\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Saved Games\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Recent\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\Saved Pictures\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\Camera Roll\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\OneDrive\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Music\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Links\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Favorites\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Favorites\Links\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Downloads\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\ZTGJILHXQB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\ZGGKNSUKOP\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\WKXEWIOTXI\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\VAMYDFPUND\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SUAVTZKNFL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SQRKHNBNYN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SFPUSAFIOL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\QCFWYSKMHA\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\NVWZAPQSQL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\KLIZUSIQEN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\IPKGELNTQY\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\BJZFPPWAPT\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\ZTGJILHXQB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\ZGGKNSUKOP\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\WKXEWIOTXI\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\VAMYDFPUND\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SUAVTZKNFL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SQRKHNBNYN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SFPUSAFIOL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\QCFWYSKMHA\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\NVWZAPQSQL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\KLIZUSIQEN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\IPKGELNTQY\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\BJZFPPWAPT\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Contacts\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Skype\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Skype\RootTools\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\to-be-removed\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\temporary\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\security_state\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\minidumps\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\tmp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\db\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\bookmarkbackups\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Pending Pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Extensions\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\f2eb6c79-671d-4de2-b7be-3b2eea7abc47\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\6d9d9777-7ded-4768-8191-9a707d72b009\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\61f56613-c62c-4b17-84dd-62b60d5776aa\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\56079431-ea46-4833-94f9-1ff5658cdb1c\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Sonar\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Sonar\SonarCC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\RTTransfer\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\LogTransport2CC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\LogTransport2\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Linguistics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Headlights\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Flash Player\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Flash Player\NativeCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\CRLogs\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\CRLogs\crashlogs\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\Preflight Acrobat Continuous\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Forms\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Collab\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Linguistics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cookie\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\VideoDecodeStats\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Cache\Cache_Data\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\blob_storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\blob_storage\d1702bdf-c0c8-42c3-b6d9-e52fd0a57b16\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\assets\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\DesktopNotification\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\DesktopNotification\NotificationsDB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\VirtualStore\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\mozilla-temp-files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Low\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\SearchEmbdIndex\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrocef_low\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\SolidDocuments\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\SolidDocuments\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\SettingsContainer\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Microsoft.WindowsAlarms\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Licenses\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Fonts\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\PlaceholderTileLogoFolder\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\PeerDistRepub\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\DiagOutputDir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\BackgroundTransferApi\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ShellFeeds\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\Flighting\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{97b27011-f8cc-4ac9-9531-d6ee8ce92324}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{76cc83ea-ae96-47fc-9329-459e5ad2d67b}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior

Source: bZRL0uttVu.exe

Static PE information: DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\* source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\OC9oMrMV8.README.txt source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931328290.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdbt source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931101345.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931328290.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.errorf source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: WINLOA~1.PDBwinload_prod.pdb source: bZRL0uttVu.exe, 00000000.00000003.1931101345.000000000102D000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdbDfm source: bZRL0uttVu.exe, 00000000.00000003.2036295728.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2165324053.0000000000FEC000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2033607403.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.error source: bZRL0uttVu.exe, 00000000.00000003.1948145687.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946286107.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946947383.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944750528.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946723113.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1947379445.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948665557.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945621591.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1943279731.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945389844.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945168816.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948893367.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944518697.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946071110.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944256581.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948377867.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944959541.0000000001053000.00000004.0
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\ source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8] source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8> source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \Device\HarddiskVolume3\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\ownload.error source: bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: mi_exe_stub.pdb source: bZRL0uttVu.exe, 00000000.00000003.1930302255.000000000106F000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1930390191.0000000001082000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8xxt2 source: bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.errorQ source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.error source: bZRL0uttVu.exe, 00000000.00000003.1948145687.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1965963769.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1966198899.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946286107.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1963497816.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964883022.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946947383.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1956942295.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1949637001.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1966472682.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1951470561.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962219875.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944750528.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1963268673.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964076160.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946723113.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1965449997.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1947379445.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962483111.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962751919.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964368306.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1949856514.0000000001053000.00000004.0
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8 source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\OC9oMrMV8.README.txt source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A5C24 FindFirstFileW,FindClose,FindNextFileW,FindClose,	0_2_005A5C24
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AA094 FindFirstFileExW,FindClose,	0_2_005AA094
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A74BC FindFirstFileExW,FindNextFileW,	0_2_005A74BC
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A7590 FindFirstFileExW,FindClose,	0_2_005A7590
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A766C FindFirstFileExW,GetFileAttributesW,FindNextFileW,	0_2_005A766C
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AF308 GetFileAttributesW,SetThreadPriority,FindFirstFileExW,FindNextFileW,FindClose,	0_2_005AF308
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_0040227C FindFirstFileExW,	8_2_0040227C
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_0040152C FindFirstFileExW,FindClose,FindNextFileW,FindClose,	8_2_0040152C

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005AA470 GetLogicalDriveStringsW,

0_2_005AA470

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\Diagnostics\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\	Jump to behavior

Networking

Found Tor onion address

Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onionalq
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onionicd
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onionl
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onione
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.oniond
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion?
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onion"
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onion]U
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onion]x
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onionk
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.oniong
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onionic
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onionl
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion)

Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001066000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: O^partitionKey=%28https%2Cmozilla.org%29,:https://www.mozilla.org/media/protocol/img/icons/social/twitter/white.79fc9d8867ed.svg equals www.twitter.com (Twitter)
Source: bZRL0uttVu.exe, 00000000.00000003.2230202222.00000000010A5000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: content-security-policy: script-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com www.google-analytics.com tagmanager.google.com www.youtube.com s.ytimg.com cdn-4.convertexperiments.com app.convert.com data.track.convertexperiments.com 1003350.track.convertexperiments.com 1003343.track.convertexperiments.com js.stripe.com; default-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org; style-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org 'unsafe-inline' app.convert.com; frame-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org www.googletagmanager.com www.google-analytics.com www.youtube-nocookie.com trackertest.org www.surveygizmo.com accounts.firefox.com accounts.firefox.com.cn www.youtube.com js.stripe.com; font-src 'self'; child-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org www.googletagmanager.com www.google-analytics.com www.youtube-nocookie.com trackertest.org www.surveygizmo.com accounts.firefox.com accounts.firefox.com.cn www.youtube.com js.stripe.com; img-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org data: mozilla.org www.googletagmanager.com www.google-analytics.com creativecommons.org cdn-4.convertexperiments.com logs.convertexperiments.com images.ctfassets.net; connect-src 'self' .mozilla.net .mozilla.org .mozilla.com .mozilla.org www.googletagmanager.com www.google-analytics.com region1.google-analytics.com logs.convertexperiments.com 1003350.metrics.convertexperiments.com 1003343.metrics.convertexperiments.com sentry.prod.mozaws.net o1069899.sentry.io o1069899.ingest.sentry.io https://accounts.firefox.com/ stage.cjms.nonprod.cloudops.mozgcp.net cjms.services.mozilla.com equals www.youtube.com (Youtube)

Source: bZRL0uttVu.exe, 00000000.00000003.1927235172.00000000010E9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://f.c2r.ts.cdn.office.net/pr
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://kinto.readthedocs.io/en/latest/tutorials/synchronisation.html#polling-for-remote-changes
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt.uz
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onione
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onionk
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitapt2yfbt7lchxejug47kmqvqqxvvjpqkmevv4l3azl3gy6pyd.onionl
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onionalq
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.oniond
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupa7e3b4pkn4mgkgojrl5iqgx24clbzc4xm7i6jeetsia3qd.onionl
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion)
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onion?
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.oniong
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onionic
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.000000000100A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://lockbitsupn2h6be2cnqpvncyhj4rgmnwn44633hnzzmtxdvjoqlp7yd.onionicd
Source: bZRL0uttVu.exe, 00000000.00000003.2230202222.00000000010A5000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://accounts.firefox.com/
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://firefox-settings-attachments.cdn.mozilla.net/
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.mozilla.com/v1/
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Kinto/kinto-attachment/
Source: bZRL0uttVu.exe, 00000000.00000003.2230202222.00000000010A5000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org/submit/firefox-desktop/messaging-system/1/7036968e-77d6-472d-
Source: bZRL0uttVu.exe, 00000000.00000003.2230202222.00000000010DD000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org/submit/firefox-desktop/messaging-system/1/96c8e907-df38-40d6-
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://remote-settings.readthedocs.io
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.0000000001142000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000113A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/customize-firefox-controls-buttons-and-toolbars?utm_source=firefox-br
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/products/firefoxgro.allizom.troppus.zvXrErQ5GYDF
Source: bZRL0uttVu.exe, 00000000.00000003.2014616809.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1990004282.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2038133809.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1994046077.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1997058469.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1889529864.000000000100A000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1909998935.0000000001049000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1991308060.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2036295728.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2017764250.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2016922272.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1988141036.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1880162807.0000000001049000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2012826885.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1984324725.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2017462800.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2025219888.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1999965556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1891109106.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1981397782.0000000001053000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://tox.chat/
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.0000000001142000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000113A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/about/gro.allizom.www.VsJpOAWrHqB2
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/contribute/gro.allizom.www.n0g9CLHwD9nR
Source: bZRL0uttVu.exe, 00000000.00000003.2230202222.00000000010A5000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/en-US/privacy/firefox/
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/en-US/privacy/firefox/Firefox
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/firefox/?utm_medium=firefox-desktop&utm_source=bookmarks-toolbar&utm_campaig
Source: bZRL0uttVu.exe, 00000000.00000003.2235149700.0000000001066000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/media/protocol/img/icons/social/twitter/white.79fc9d8867ed.svg
Source: bZRL0uttVu.exe, 00000000.00000003.1888082038.000000000114A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/gro.allizom.www.

Spam, unwanted Advertisements and Ransom Demands

Found ransom note / readme

Source: C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\OC9oMrMV8.README.txt

Dropped file: YOUR FILES ARE ENCRYPTED!The only way to decrypt them is to buy our decryptor.Contact us on TOX messenger and decrypt one file for free, for proof of our working decryptor.Download TOX messenger: https://tox.chat/Add TOX ID: 82EB02C9FE8B50B794181CCD14F851EB23428FD265C609CD2054DA2A640008154B1FBDE043D7

Jump to dropped file

Yara detected LockBit ransomware

Source: Yara match	File source: bZRL0uttVu.exe, type: SAMPLE
Source: Yara match	File source: 0.0.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 0.2.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000000.00000002.2531834489.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY
Source: Yara match	File source: 00000000.00000000.1860540154.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY
Source: Yara match	File source: 00000000.00000002.2533339573.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: bZRL0uttVu.exe PID: 6356, type: MEMORYSTR

Yara detected TrojanRansom

Source: Yara match

File source: Process Memory Space: bZRL0uttVu.exe PID: 6356, type: MEMORYSTR

Changes the wallpaper picture

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Key value created or modified: HKEY_CURRENT_USER\Control Panel\Desktop WallPaper C:\ProgramData\OC9oMrMV8.bmp

Jump to behavior

Found potential ransomware demand text

Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encryptedlk
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encryptede
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encrypted
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encrypted?
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encryptede)
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encrypted#
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encryptedl{
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FD6000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : Your data are stolen and encryptedeu
Source: bZRL0uttVu.exe, 00000000.00000003.2531176819.0000000001065000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : All your important files are stolen and encrypted!
Source: bZRL0uttVu.exe, 00000000.00000003.2521006970.0000000001065000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : All your important files are stolen and encrypted!
Source: bZRL0uttVu.exe, 00000000.00000002.2533339573.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory : All your important files are stolen and encrypted!

Modifies existing user documents (likely ransomware behavior)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File moved: C:\Users\user\Desktop\IPKGELNTQY.jpg	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File moved: C:\Users\user\Desktop\NEBFQQYWPS.pdf	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File moved: C:\Users\user\Desktop\ZTGJILHXQB.docx	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File moved: C:\Users\user\Desktop\SQRKHNBNYN.jpg	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File moved: C:\Users\user\Desktop\WKXEWIOTXI\VAMYDFPUND.pdf	Jump to behavior

Writes many files with high entropy

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{76cc83ea-ae96-47fc-9329-459e5ad2d67b}\0.0.filtertrie.intermediate.txt.OC9oMrMV8 entropy: 7.99912656433	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\appsglobals.txt.OC9oMrMV8 entropy: 7.9995518737	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\appssynonyms.txt.OC9oMrMV8 entropy: 7.99914387546	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingsglobals.txt.OC9oMrMV8 entropy: 7.99532386514	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingsconversions.txt.OC9oMrMV8 entropy: 7.99739426231	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\0.0.filtertrie.intermediate.txt.OC9oMrMV8 entropy: 7.99506176889	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\Apps.ft.OC9oMrMV8 entropy: 7.9962193171	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\0.0.filtertrie.intermediate.txt.OC9oMrMV8 entropy: 7.99493816686	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingssynonyms.txt.OC9oMrMV8 entropy: 7.99798686082	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome.OC9oMrMV8 entropy: 7.99471813182	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\308046B0AF4A39CB.OC9oMrMV8 entropy: 7.99487377039	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\0.0.filtertrie.intermediate.txt.OC9oMrMV8 entropy: 7.99451236023	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\Apps.ft.OC9oMrMV8 entropy: 7.99674508614	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\wctEA40.tmp.OC9oMrMV8 entropy: 7.99742974266	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\Apps.ft.OC9oMrMV8 entropy: 7.99654041454	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{116229A7-9A3B-2078-DB5F-B5A20811242C}.OC9oMrMV8 entropy: 7.99624242568	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\https___java_com_help.OC9oMrMV8 entropy: 7.99531870829	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_mpnpojknpmnjdcgaaiekajbnjb.OC9oMrMV8 entropy: 7.99544867552	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_kefjledonknomlcbpllchaibag.OC9oMrMV8 entropy: 7.9955740984	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\https___java_com_.OC9oMrMV8 entropy: 7.9943175515	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_fmgjjmmmlfcabfkddbjimcfncm.OC9oMrMV8 entropy: 7.99535637045	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_fhihpiojkboajapmgkhlnakfjf.OC9oMrMV8 entropy: 7.99470950097	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_agimnkijcamfeangaknmldooml.OC9oMrMV8 entropy: 7.99429083023	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_aghbiahbpaeidepookljebhfak.OC9oMrMV8 entropy: 7.99510663893	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\308046B0AF4A39CB;PrivateBrowsingAUMID.OC9oMrMV8 entropy: 7.99548856778	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696334775820156800_6EB929AF-656E-4F43-9731-EA7753E1F1BD.log.OC9oMrMV8 entropy: 7.99278326191	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{E7A33582-E908-3379-5368-5999454DCD83}.OC9oMrMV8 entropy: 7.99488080193	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{DAA168DE-4306-C8BC-8C11-B596240BDDED}.OC9oMrMV8 entropy: 7.99605595773	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{C804BBA7-FA5F-CBF7-8B55-2096E5F972CB}.OC9oMrMV8 entropy: 7.99459011449	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{C1C6F8AC-40A3-0F5C-146F-65A9DC70BBB4}.OC9oMrMV8 entropy: 7.99552480026	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{BD3F924E-55FB-A1BA-9DE6-B50F9F2460AC}.OC9oMrMV8 entropy: 7.99475176072	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{BB044BFD-25B7-2FAA-22A8-6371A93E0456}.OC9oMrMV8 entropy: 7.99505083741	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696334923056622400_BD966DD2-7850-423A-B1D8-7882CE1A6D15.log.OC9oMrMV8 entropy: 7.99913714297	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{923DD477-5846-686B-A659-0FCCD73851A8}.OC9oMrMV8 entropy: 7.99558847163	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417072488237400_C12D9B44-3468-47BC-9418-BF0A674A2B2F.log.OC9oMrMV8 entropy: 7.99920863424	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{8ABD94FB-E7D6-84A6-A997-C918EDDE0AE5}.OC9oMrMV8 entropy: 7.99487437031	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{8AA47365-B2B3-1961-69EB-F866E376B12F}.OC9oMrMV8 entropy: 7.99490051157	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417101742322600_290EFEE9-C25A-4857-9F32-D7E6D51B7C09.log.OC9oMrMV8 entropy: 7.99901725983	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{16988324-21C9-05B2-CA60-9B4EC72739D8}.OC9oMrMV8 entropy: 7.99561321128	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417118050662300_8475A8C9-2447-4BC4-8E46-350AA0582B94.log.OC9oMrMV8 entropy: 7.99876793799	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App_1696413198165042300_AA3FCB9C-CF1A-4407-8A94-A7D6C220021F.log.OC9oMrMV8 entropy: 7.99873801459	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_InternetExplorer_Default.OC9oMrMV8 entropy: 7.99541357321	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt.OC9oMrMV8 entropy: 7.99254551989	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{F1118828-A0CC-5FEB-85C9-DBFFDF98434A}.OC9oMrMV8 entropy: 7.99537022363	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{E8B84CFB-B069-BC13-F88F-170904F645E5}.OC9oMrMV8 entropy: 7.99511295064	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_OUTLOOK_EXE_15.OC9oMrMV8 entropy: 7.99522130385	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_OcPubMgr_exe_15.OC9oMrMV8 entropy: 7.99520004402	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSPUB_EXE_15.OC9oMrMV8 entropy: 7.99509715855	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_msoev_exe_15.OC9oMrMV8 entropy: 7.99488016586	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSACCESS_EXE_15.OC9oMrMV8 entropy: 7.99425397813	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSOUC_EXE_15.OC9oMrMV8 entropy: 7.99452972471	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_DATABASECOMPARE_EXE_15.OC9oMrMV8 entropy: 7.99531811039	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_lync_exe_15.OC9oMrMV8 entropy: 7.99576505598	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_EXCEL_EXE_15.OC9oMrMV8 entropy: 7.99483326982	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_SETLANG_EXE_15.OC9oMrMV8 entropy: 7.99478616014	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsCalculator_8wekyb3d8bbwe!App.OC9oMrMV8 entropy: 7.99520092524	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsAlarms_8wekyb3d8bbwe!App.OC9oMrMV8 entropy: 7.99512707143	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_SkyDrive_Desktop.OC9oMrMV8 entropy: 7.99448335461	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_WINWORD_EXE_15.OC9oMrMV8 entropy: 7.99485047762	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_SPREADSHEETCOMPARE_EXE_15.OC9oMrMV8 entropy: 7.99534499039	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_ONENOTE_EXE_15.OC9oMrMV8 entropy: 7.99540440007	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_POWERPNT_EXE_15.OC9oMrMV8 entropy: 7.99514032318	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Explorer.OC9oMrMV8 entropy: 7.99483869267	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_ControlPanel.OC9oMrMV8 entropy: 7.99464122879	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Computer.OC9oMrMV8 entropy: 7.9955267973	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_AdministrativeTools.OC9oMrMV8 entropy: 7.99502067285	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsStore_8wekyb3d8bbwe!App.OC9oMrMV8 entropy: 7.99452262781	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsSoundRecorder_8wekyb3d8bbwe!App.OC9oMrMV8 entropy: 7.99497083553	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite.OC9oMrMV8 entropy: 7.99807714245	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite-shm.OC9oMrMV8 entropy: 7.99504788361	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\extensions.json.OC9oMrMV8 entropy: 7.9950658478	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite-shm.OC9oMrMV8 entropy: 7.99473631412	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite.OC9oMrMV8 entropy: 7.99806453866	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cert9.db.OC9oMrMV8 entropy: 7.99919799704	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\content-prefs.sqlite.OC9oMrMV8 entropy: 7.9993705965	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-shm.OC9oMrMV8 entropy: 7.9927526174	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\key4.db.OC9oMrMV8 entropy: 7.99935275233	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\protections.sqlite.OC9oMrMV8 entropy: 7.99683241004	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite-shm.OC9oMrMV8 entropy: 7.99448483119	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite.OC9oMrMV8 entropy: 7.99816367511	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\ls-archive.sqlite.OC9oMrMV8 entropy: 7.99870250172	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite.OC9oMrMV8 entropy: 7.99621515681	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm.OC9oMrMV8 entropy: 7.99433820516	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite.OC9oMrMV8 entropy: 7.99643763107	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm.OC9oMrMV8 entropy: 7.99489076629	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite.OC9oMrMV8 entropy: 7.99583421469	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite-shm.OC9oMrMV8 entropy: 7.99491878093	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite.OC9oMrMV8 entropy: 7.99610310896	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm.OC9oMrMV8 entropy: 7.99481731385	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite.OC9oMrMV8 entropy: 7.99653352811	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm.OC9oMrMV8 entropy: 7.99468038286	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm.OC9oMrMV8 entropy: 7.99428048009	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\trash16598\13723.OC9oMrMV8 entropy: 7.99563313831	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\2B8DB5289EFF0A466C21F47412A322A36CEB5044.OC9oMrMV8 entropy: 7.99811477243	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\289DBE90018D682BDBFD59A3CAACE9EE538234FD.OC9oMrMV8 entropy: 7.99165459867	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\252CE8AC445A184A1F4A1C6C6D4ADB8AE41B7776.OC9oMrMV8 entropy: 7.99767184116	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\22F59957B7E08CD6CCFED6AF2A1DF26FE157DF40.OC9oMrMV8 entropy: 7.99843722198	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\7278f154-e8f4-4235-84c5-c5c1c6af0084.OC9oMrMV8 entropy: 7.99775184481	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\3C9B2D192D535C347CDA9FB12BFC88FD40CF0382.OC9oMrMV8 entropy: 7.99776070406	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\62FC1E8DCE1991EEB55DE9EFADF47EA578A22AB5.OC9oMrMV8 entropy: 7.99282159695	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\44230749A38B6989F56217B435A03E84CCADE62D.OC9oMrMV8 entropy: 7.99461510967	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\BDE5E55BCB4604200C70FB908FA76903C94590D3.OC9oMrMV8 entropy: 7.99868036277	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829744.7278f154-e8f4-4235-84c5-c5c1c6af0084.main.jsonlz4.OC9oMrMV8 entropy: 7.9907903547	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829746.67aa4432-87f8-463e-b422-f6679add9971.first-shutdown.jsonlz4.OC9oMrMV8 entropy: 7.99115774953	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D0F48A0632B6C451791F4257697E861961F06A6F.OC9oMrMV8 entropy: 7.99571070822	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\E707EC8A256322E87908664A49F800B7B48E0961.OC9oMrMV8 entropy: 7.99195916667	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\DED23BB33EA3C88FAD1C0A1CD53916E0D8C424D3.OC9oMrMV8 entropy: 7.99059935199	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\first_party_sets.db.OC9oMrMV8 entropy: 7.99634918987	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\doomed\11719.OC9oMrMV8 entropy: 7.99588905251	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State.OC9oMrMV8 entropy: 7.99681956776	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1.OC9oMrMV8 entropy: 7.99931344264	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\index.OC9oMrMV8 entropy: 7.99925958264	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\MSEdge.OC9oMrMV8 entropy: 7.99480357027	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Shell_RunDialog.OC9oMrMV8 entropy: 7.99503981378	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_RemoteDesktop.OC9oMrMV8 entropy: 7.99536572094	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Photos_8wekyb3d8bbwe!App.OC9oMrMV8 entropy: 7.99452737083	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_MediaPlayer32.OC9oMrMV8 entropy: 7.99513779072	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_msinfo32_exe.OC9oMrMV8 entropy: 7.99477234171	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_MdSched_exe.OC9oMrMV8 entropy: 7.99556101921	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_dfrgui_exe.OC9oMrMV8 entropy: 7.9950559715	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_magnify_exe.OC9oMrMV8 entropy: 7.99535256868	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_iscsicpl_exe.OC9oMrMV8 entropy: 7.99538660461	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_comexp_msc.OC9oMrMV8 entropy: 7.99534989297	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_exe.OC9oMrMV8 entropy: 7.99485589932	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cleanmgr_exe.OC9oMrMV8 entropy: 7.99546161278	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_charmap_exe.OC9oMrMV8 entropy: 7.99495657888	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_msconfig_exe.OC9oMrMV8 entropy: 7.99486168059	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_SnippingTool_exe.OC9oMrMV8 entropy: 7.99524114227	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_services_msc.OC9oMrMV8 entropy: 7.99549516281	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_RecoveryDrive_exe.OC9oMrMV8 entropy: 7.99489388348	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_quickassist_exe.OC9oMrMV8 entropy: 7.99435249535	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_psr_exe.OC9oMrMV8 entropy: 7.99552303766	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_printmanagement_msc.OC9oMrMV8 entropy: 7.994607419	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_osk_exe.OC9oMrMV8 entropy: 7.99415246773	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_odbcad32_exe.OC9oMrMV8 entropy: 7.99552885462	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_notepad_exe.OC9oMrMV8 entropy: 7.99525078598	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_narrator_exe.OC9oMrMV8 entropy: 7.99503611562	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_mspaint_exe.OC9oMrMV8 entropy: 7.9944049954	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Au3Info_exe.OC9oMrMV8 entropy: 7.99399121986	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Windows NT_Accessories_wordpad_exe.OC9oMrMV8 entropy: 7.99522237916	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Common Files_Microsoft Shared_Ink_mip_exe.OC9oMrMV8 entropy: 7.99447381218	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Adobe_Acrobat DC_Acrobat_Acrobat_exe.OC9oMrMV8 entropy: 7.99543993921	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_7-Zip_7zFM_exe.OC9oMrMV8 entropy: 7.99535917535	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_7-Zip_7-zip_chm.OC9oMrMV8 entropy: 7.99462093048	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WindowsPowerShell_v1_0_PowerShell_ISE_exe.OC9oMrMV8 entropy: 7.99484664042	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WindowsPowerShell_v1_0_powershell_exe.OC9oMrMV8 entropy: 7.99584909161	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WF_msc.OC9oMrMV8 entropy: 7.9956306959	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WFS_exe.OC9oMrMV8 entropy: 7.99450083058	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Extras.OC9oMrMV8 entropy: 7.99415966317	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Examples.OC9oMrMV8 entropy: 7.99481441811	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt_chm.OC9oMrMV8 entropy: 7.99552244759	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoItX_AutoItX_chm.OC9oMrMV8 entropy: 7.99551607482	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt3_x64_exe.OC9oMrMV8 entropy: 7.99493245026	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt3_exe.OC9oMrMV8 entropy: 7.99491662985	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt v3 Website_url.OC9oMrMV8 entropy: 7.99532132613	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Aut2Exe_Aut2exe_x64_exe.OC9oMrMV8 entropy: 7.9948793669	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Aut2Exe_Aut2exe_exe.OC9oMrMV8 entropy: 7.9951096218	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Au3Info_x64_exe.OC9oMrMV8 entropy: 7.99469241868	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edb.log.OC9oMrMV8 entropy: 7.99958086409	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\index.OC9oMrMV8 entropy: 7.99938813923	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{F38BF404-1D43-42F2-9305-67DE0B28FC23}_regedit_exe.OC9oMrMV8 entropy: 7.99492664548	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1.OC9oMrMV8 entropy: 7.99938246025	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_WindowsPowerShell_v1_0_PowerShell_ISE_exe.OC9oMrMV8 entropy: 7.99490878641	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_WindowsPowerShell_v1_0_powershell_exe.OC9oMrMV8 entropy: 7.99504274318	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_odbcad32_exe.OC9oMrMV8 entropy: 7.99503175671	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_Java_jre-1_8_bin_javacpl_exe.OC9oMrMV8 entropy: 7.99456245972	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_SciTE_SciTE_exe.OC9oMrMV8 entropy: 7.9950961803	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\index.OC9oMrMV8 entropy: 7.99927478906	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbtmp.log.OC9oMrMV8 entropy: 7.99959069475	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbres00002.jrs.OC9oMrMV8 entropy: 7.99964042513	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edb00001.log.OC9oMrMV8 entropy: 7.99965802211	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.jfm.OC9oMrMV8 entropy: 7.99076622028	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbres00001.jrs.OC9oMrMV8 entropy: 7.9996644968	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_1.OC9oMrMV8 entropy: 7.99931767633	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user\ActivitiesCache.db-shm.OC9oMrMV8 entropy: 7.99452117536	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\MediaDb.v1.sqlite-shm.OC9oMrMV8 entropy: 7.99449099093	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_storei.OC9oMrMV8 entropy: 7.99263194958	Jump to dropped file
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\915DEAC5D1E15E49646B8A94E04E470958C9BB89.crl.OC9oMrMV8 entropy: 7.99691812023	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\bZRL0uttVu.exe entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\AAAAAAAAAAAAAA (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\BBBBBBBBBBBBBB (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\CCCCCCCCCCCCCC (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\DDDDDDDDDDDDDD (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\EEEEEEEEEEEEEE (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\FFFFFFFFFFFFFF (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\GGGGGGGGGGGGGG (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\HHHHHHHHHHHHHH (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\IIIIIIIIIIIIII (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\JJJJJJJJJJJJJJ (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\KKKKKKKKKKKKKK (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\LLLLLLLLLLLLLL (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\MMMMMMMMMMMMMM (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\NNNNNNNNNNNNNN (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\OOOOOOOOOOOOOO (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\PPPPPPPPPPPPPP (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\QQQQQQQQQQQQQQ (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\RRRRRRRRRRRRRR (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\SSSSSSSSSSSSSS (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\TTTTTTTTTTTTTT (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\UUUUUUUUUUUUUU (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\VVVVVVVVVVVVVV (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\WWWWWWWWWWWWWW (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\XXXXXXXXXXXXXX (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\YYYYYYYYYYYYYY (copy) entropy: 7.99729666549	Jump to dropped file
Source: C:\ProgramData\B0BE.tmp	File created: C:\Users\user\Desktop\ZZZZZZZZZZZZZZ (copy) entropy: 7.99729666549	Jump to dropped file

System Summary

Malicious sample detected (through community Yara rule)

Source: bZRL0uttVu.exe, type: SAMPLE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 Author: unknown
Source: 0.0.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 Author: unknown
Source: 0.2.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 Author: unknown
Source: 00000000.00000002.2531834489.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY	Matched rule: Windows_Ransomware_Lockbit_369e1e94 Author: unknown
Source: 00000000.00000000.1860540154.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY	Matched rule: Windows_Ransomware_Lockbit_369e1e94 Author: unknown

Contains functionality to call native functions

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AB444 NtSetInformationThread,	0_2_005AB444
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AB470 NtProtectVirtualMemory,	0_2_005AB470
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005ADC60 NtTerminateProcess,	0_2_005ADC60
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005B7034 CreateThread,CreateThread,CreateThread,CreateThread,NtTerminateThread,CreateThread,CreateThread,	0_2_005B7034
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A6C98 NtQueryInformationToken,	0_2_005A6C98
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A9880 NtClose,	0_2_005A9880
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005B04B4 GetTempFileNameW,CreateFileW,WriteFile,CreateProcessW,NtQueryInformationProcess,NtReadVirtualMemory,NtProtectVirtualMemory,NtWriteVirtualMemory,CreateNamedPipeW,ResumeThread,ConnectNamedPipe,	0_2_005B04B4
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AE1E8 CreateThread,NtClose,	0_2_005AE1E8
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A7E58 NtQuerySystemInformation,Sleep,	0_2_005A7E58
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005ADE78 SetThreadPriority,ReadFile,WriteFile,WriteFile,NtClose,	0_2_005ADE78
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AB674 NtQueryInformationToken,	0_2_005AB674
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A6668 CreateFileW,NtAllocateVirtualMemory,WriteFile,SetFilePointerEx,NtFreeVirtualMemory,NtClose,DeleteFileW,	0_2_005A6668
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A8F68 RtlAdjustPrivilege,NtSetInformationThread,	0_2_005A8F68
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AB734 NtSetInformationProcess,NtSetInformationProcess,NtSetInformationProcess,	0_2_005AB734
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A97D8 NtQuerySystemInformation,	0_2_005A97D8
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AB3C0 NtSetInformationThread,NtClose,	0_2_005AB3C0
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AC3F8 CreateFileW,WriteFile,RegCreateKeyExW,RegSetValueExW,RegCreateKeyExW,RegSetValueExW,SHChangeNotify,NtClose,	0_2_005AC3F8
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A9811 NtQuerySystemInformation,	0_2_005A9811
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A982A NtQuerySystemInformation,	0_2_005A982A
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A7E8A NtQuerySystemInformation,Sleep,	0_2_005A7E8A
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A7EA3 NtQuerySystemInformation,Sleep,	0_2_005A7EA3
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A8F66 RtlAdjustPrivilege,NtSetInformationThread,	0_2_005A8F66
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_00402760 CreateFileW,ReadFile,NtClose,	8_2_00402760
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_0040286C NtSetInformationProcess,NtSetInformationProcess,NtSetInformationProcess,	8_2_0040286C
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_00402F18 CreateFileW,NtAllocateVirtualMemory,WriteFile,SetFilePointerEx,SetFilePointerEx,NtFreeVirtualMemory,NtClose,DeleteFileW,	8_2_00402F18
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_00401DC2 NtProtectVirtualMemory,	8_2_00401DC2
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_00401D94 NtSetInformationThread,	8_2_00401D94
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_004016B4 NtAllocateVirtualMemory,NtAllocateVirtualMemory,	8_2_004016B4

Contains functionality to communicate with device drivers

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005AA68C: GetVolumeNameForVolumeMountPointW,FindFirstVolumeW,GetVolumePathNamesForVolumeNameW,GetDriveTypeW,CreateFileW,DeviceIoControl,

0_2_005AA68C

Creates files inside the system directory

Source: C:\Windows\splwow64.exe

File created: C:\Windows\system32\spool\PRINTERS\00002.SPL

Detected potential crypto function

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A80B8	0_2_005A80B8
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A20AC	0_2_005A20AC
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A4D08	0_2_005A4D08
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A4D03	0_2_005A4D03
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A5218	0_2_005A5218

Enables security privileges

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Process token adjusted: Security

Uses 32bit PE files

Source: bZRL0uttVu.exe

Static PE information: EXECUTABLE_IMAGE, 32BIT_MACHINE

Yara signature match

Source: bZRL0uttVu.exe, type: SAMPLE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 reference_sample = d61af007f6c792b8fb6c677143b7d0e2533394e28c50737588e40da475c040ee, os = windows, severity = x86, creation_date = 2022-07-05, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Ransomware.Lockbit, fingerprint = 9cf4c112c0ee708ae64052926681e8351f1ccefeb558c41e875dbd9e4bdcb5f2, id = 369e1e94-3fbb-4828-bb78-89d26e008105, last_modified = 2022-07-18
Source: 0.0.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 reference_sample = d61af007f6c792b8fb6c677143b7d0e2533394e28c50737588e40da475c040ee, os = windows, severity = x86, creation_date = 2022-07-05, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Ransomware.Lockbit, fingerprint = 9cf4c112c0ee708ae64052926681e8351f1ccefeb558c41e875dbd9e4bdcb5f2, id = 369e1e94-3fbb-4828-bb78-89d26e008105, last_modified = 2022-07-18
Source: 0.2.bZRL0uttVu.exe.5a0000.0.unpack, type: UNPACKEDPE	Matched rule: Windows_Ransomware_Lockbit_369e1e94 reference_sample = d61af007f6c792b8fb6c677143b7d0e2533394e28c50737588e40da475c040ee, os = windows, severity = x86, creation_date = 2022-07-05, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Ransomware.Lockbit, fingerprint = 9cf4c112c0ee708ae64052926681e8351f1ccefeb558c41e875dbd9e4bdcb5f2, id = 369e1e94-3fbb-4828-bb78-89d26e008105, last_modified = 2022-07-18
Source: 00000000.00000002.2531834489.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY	Matched rule: Windows_Ransomware_Lockbit_369e1e94 reference_sample = d61af007f6c792b8fb6c677143b7d0e2533394e28c50737588e40da475c040ee, os = windows, severity = x86, creation_date = 2022-07-05, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Ransomware.Lockbit, fingerprint = 9cf4c112c0ee708ae64052926681e8351f1ccefeb558c41e875dbd9e4bdcb5f2, id = 369e1e94-3fbb-4828-bb78-89d26e008105, last_modified = 2022-07-18
Source: 00000000.00000000.1860540154.00000000005A1000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY	Matched rule: Windows_Ransomware_Lockbit_369e1e94 reference_sample = d61af007f6c792b8fb6c677143b7d0e2533394e28c50737588e40da475c040ee, os = windows, severity = x86, creation_date = 2022-07-05, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Ransomware.Lockbit, fingerprint = 9cf4c112c0ee708ae64052926681e8351f1ccefeb558c41e875dbd9e4bdcb5f2, id = 369e1e94-3fbb-4828-bb78-89d26e008105, last_modified = 2022-07-18

Source: classification engine

Classification label: mal100.rans.phis.spyw.evad.winEXE@9/1664@0/0

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

File created: C:\Users\OC9oMrMV8.README.txt

Jump to behavior

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Mutant created: \Sessions\1\BaseNamedObjects\Global\94a657af28168e38ae2672c03e3cba29
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2848:120:WilError_03
Source: C:\ProgramData\B0BE.tmp	Mutant created: \Sessions\1\BaseNamedObjects\Global\{649F4E29-16CB-DD42-8922-9FFF0592856B}

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

File created: C:\Users\user\AppData\Local\Temp\OC9oMrMV8.README.txt

Jump to behavior

Source: C:\Windows\splwow64.exe

File read: C:\Windows\System32\DriverStore\FileRepository\prnms006.inf_amd64_c3bdcb6fc975b614\SendToOneNote-manifest.ini

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: bZRL0uttVu.exe	ReversingLabs: Detection: 89%
Source: bZRL0uttVu.exe	Virustotal: Detection: 88%

Source: unknown	Process created: C:\Users\user\Desktop\bZRL0uttVu.exe "C:\Users\user\Desktop\bZRL0uttVu.exe"
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process created: C:\Windows\splwow64.exe C:\Windows\splwow64.exe 12288
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process created: C:\ProgramData\B0BE.tmp "C:\ProgramData\B0BE.tmp"
Source: unknown	Process created: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE /insertdoc "C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\{F24807AC-C25F-4B66-96E7-E0E93A319590}.xps" 133743940273530000
Source: C:\ProgramData\B0BE.tmp	Process created: C:\Windows\SysWOW64\cmd.exe "C:\Windows\System32\cmd.exe" /C DEL /F /Q C:\PROGRA~3\B0BE.tmp >> NUL
Source: C:\Windows\SysWOW64\cmd.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process created: C:\Windows\splwow64.exe C:\Windows\splwow64.exe 12288
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process created: C:\ProgramData\B0BE.tmp "C:\ProgramData\B0BE.tmp"
Source: C:\ProgramData\B0BE.tmp	Process created: C:\Windows\SysWOW64\cmd.exe "C:\Windows\System32\cmd.exe" /C DEL /F /Q C:\PROGRA~3\B0BE.tmp >> NUL

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: rstrtmgr.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wkscli.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: srvcli.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: samcli.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: logoncli.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: activeds.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: adsldpc.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wininet.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wsock32.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: mpr.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: gpedit.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: dssec.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: dsuiext.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: framedynos.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: dsrole.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: ntdsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: authz.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: wbemcomn.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: amsi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: adsldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: sxs.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: mscms.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: coloradapterclient.dll	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\ProgramData\B0BE.tmp	Section loaded: apphelp.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: rstrtmgr.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: ncrypt.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: ntasn1.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: windows.storage.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: wldp.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: kernel.appcore.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: uxtheme.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: propsys.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: profapi.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: edputil.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: urlmon.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: iertutil.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: srvcli.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: netutils.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: windows.staterepositoryps.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: sspicli.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: wintypes.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: appresolver.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: bcp47langs.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: slc.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: userenv.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: sppc.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: onecorecommonproxystub.dll
Source: C:\ProgramData\B0BE.tmp	Section loaded: onecoreuapcommonproxystub.dll

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CB8555CC-9128-11D1-AD9B-00C04FD8FDFF}\InprocServer32

Jump to behavior

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

File written: C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\desktop.ini

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE

Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Common

Source: bZRL0uttVu.exe

Static PE information: DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: bZRL0uttVu.exe

Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG

Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\* source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\OC9oMrMV8.README.txt source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931328290.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdbt source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931101345.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931328290.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.errorf source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: WINLOA~1.PDBwinload_prod.pdb source: bZRL0uttVu.exe, 00000000.00000003.1931101345.000000000102D000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdbDfm source: bZRL0uttVu.exe, 00000000.00000003.2036295728.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2165324053.0000000000FEC000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2033607403.0000000000FEA000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.error source: bZRL0uttVu.exe, 00000000.00000003.1948145687.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946286107.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946947383.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944750528.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946723113.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1947379445.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948665557.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945621591.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1943279731.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945389844.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1945168816.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948893367.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944518697.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946071110.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944256581.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1948377867.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944959541.0000000001053000.00000004.0
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\ source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8] source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8> source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \Device\HarddiskVolume3\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\ownload.error source: bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: mi_exe_stub.pdb source: bZRL0uttVu.exe, 00000000.00000003.1930302255.000000000106F000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1930390191.0000000001082000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8xxt2 source: bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1941775019.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.errorQ source: bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937966648.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936502164.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1937077054.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.error source: bZRL0uttVu.exe, 00000000.00000003.1948145687.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931976210.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1965963769.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1966198899.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946286107.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1963497816.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964883022.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946947383.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1956942295.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1949637001.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1966472682.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1936006544.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1951470561.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962219875.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1944750528.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1963268673.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1939350381.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964076160.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1946723113.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1931672595.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1965449997.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1947379445.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1938621556.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962483111.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1962751919.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1964368306.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1949856514.0000000001053000.00000004.0
Source:	Binary string: \??\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8 source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \\?\C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\OC9oMrMV8.README.txt source: bZRL0uttVu.exe, 00000000.00000003.1933453204.0000000001053000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.1932990902.0000000001053000.00000004.00000020.00020000.00000000.sdmp

PE file contains an invalid checksum

Source: bZRL0uttVu.exe

Static PE information: real checksum: 0x31af1 should be: 0x2fdd7

Uses code obfuscation techniques (call, push, ret)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A356B push 0000006Ah; retf	0_2_005A3644
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A35D3 push 0000006Ah; retf	0_2_005A3644
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A35D5 push 0000006Ah; retf	0_2_005A3644
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A61EE push esp; retf	0_2_005A61F6

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Videos\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Searches\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Saved Games\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Recent\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\Saved Pictures\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Pictures\Camera Roll\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\OneDrive\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Music\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Links\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Favorites\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Favorites\Links\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Downloads\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\ZTGJILHXQB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\ZGGKNSUKOP\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\WKXEWIOTXI\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\VAMYDFPUND\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SUAVTZKNFL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SQRKHNBNYN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\SFPUSAFIOL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\QCFWYSKMHA\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\NVWZAPQSQL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\KLIZUSIQEN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\IPKGELNTQY\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Documents\BJZFPPWAPT\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\ZTGJILHXQB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\ZGGKNSUKOP\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\WKXEWIOTXI\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\VAMYDFPUND\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SUAVTZKNFL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SQRKHNBNYN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\SFPUSAFIOL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\QCFWYSKMHA\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\NVWZAPQSQL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\KLIZUSIQEN\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\IPKGELNTQY\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Desktop\BJZFPPWAPT\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\Contacts\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Skype\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Skype\RootTools\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\to-be-removed\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\temporary\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\security_state\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\minidumps\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\tmp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\db\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\bookmarkbackups\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Pending Pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Mozilla\Extensions\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\f2eb6c79-671d-4de2-b7be-3b2eea7abc47\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\6d9d9777-7ded-4768-8191-9a707d72b009\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\61f56613-c62c-4b17-84dd-62b60d5776aa\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\com.adobe.dunamis\56079431-ea46-4833-94f9-1ff5658cdb1c\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Sonar\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Sonar\SonarCC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\RTTransfer\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\LogTransport2CC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\LogTransport2\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Linguistics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Headlights\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Flash Player\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Flash Player\NativeCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\CRLogs\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\CRLogs\crashlogs\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\Preflight Acrobat Continuous\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Forms\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Collab\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Linguistics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cookie\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\VideoDecodeStats\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Cache\Cache_Data\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\blob_storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\blob_storage\d1702bdf-c0c8-42c3-b6d9-e52fd0a57b16\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\assets\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\DesktopNotification\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\Acrobat\DesktopNotification\NotificationsDB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\VirtualStore\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\mozilla-temp-files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Low\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\SearchEmbdIndex\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrocef_low\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\SolidDocuments\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\SolidDocuments\Acrobat\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\SettingsContainer\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Microsoft.WindowsAlarms\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Licenses\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Fonts\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\PlaceholderTileLogoFolder\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\PeerDistRepub\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\DiagOutputDir\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Xbox.TCUI_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsMaps_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\BackgroundTransferApi\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCamera_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsCalculator_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.WindowsAlarms_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.XGpuEjectDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecureAssessmentBrowser_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ShellFeeds\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\Flighting\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{97b27011-f8cc-4ac9-9531-d6ee8ce92324}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{76cc83ea-ae96-47fc-9329-459e5ad2d67b}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\Cache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File created: C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	Jump to behavior

Hooking and other Techniques for Hiding and Protection

Deletes itself after installation

Source: C:\ProgramData\B0BE.tmp	Process created: C:\Windows\SysWOW64\cmd.exe "C:\Windows\System32\cmd.exe" /C DEL /F /Q C:\PROGRA~3\B0BE.tmp >> NUL
Source: C:\ProgramData\B0BE.tmp	Process created: C:\Windows\SysWOW64\cmd.exe "C:\Windows\System32\cmd.exe" /C DEL /F /Q C:\PROGRA~3\B0BE.tmp >> NUL

May modify the system service descriptor table (often done to hook functions)

Source: download.error.OC9oMrMV80.0.dr

Binary or memory string: KeServiceDescriptorTable

Contains functionality to clear windows event logs (to hide its activities)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005A91C8 RegCreateKeyExW,RegEnumKeyW,RegCreateKeyExW,RegSetValueExW,RegSetValueExW,OpenEventLogW,ClearEventLogW,RegCreateKeyExW,RegEnumKeyW,OpenEventLogW,ClearEventLogW,

0_2_005A91C8

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\ProgramData\B0BE.tmp	Process information set: FAILCRITICALERRORS \| NOALIGNMENTFAULTEXCEPT \| NOGPFAULTERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE	Process information set: NOALIGNMENTFAULTEXCEPT \| NOOPENFILEERRORBOX

Malware Analysis System Evasion

Contains functionality to detect hardware virtualization (CPUID execution measurement)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A10BC		0_2_005A10BC
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_00401E28		8_2_00401E28

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Source: bZRL0uttVu.exe, 00000000.00000003.2041263022.0000000001082000.00000004.00000020.00020000.00000000.sdmp

Binary or memory string: {7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\WINDOWS KITS\10\DEBUGGERS\X86\WINDBG.EXE12392

Contains functionality for execution timing, often used to detect debuggers

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005A10BC rdtsc

0_2_005A10BC

Sample execution stops while process was sleeping (likely an evasion)

Source: C:\Windows\System32\conhost.exe

Last function: Thread delayed

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A5C24 FindFirstFileW,FindClose,FindNextFileW,FindClose,	0_2_005A5C24
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AA094 FindFirstFileExW,FindClose,	0_2_005AA094
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A74BC FindFirstFileExW,FindNextFileW,	0_2_005A74BC
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A7590 FindFirstFileExW,FindClose,	0_2_005A7590
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005A766C FindFirstFileExW,GetFileAttributesW,FindNextFileW,	0_2_005A766C
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Code function: 0_2_005AF308 GetFileAttributesW,SetThreadPriority,FindFirstFileExW,FindNextFileW,FindClose,	0_2_005AF308
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_0040227C FindFirstFileExW,	8_2_0040227C
Source: C:\ProgramData\B0BE.tmp	Code function: 8_2_0040152C FindFirstFileExW,FindClose,FindNextFileW,FindClose,	8_2_0040152C

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005AA470 GetLogicalDriveStringsW,

0_2_005AA470

Source: C:\Windows\splwow64.exe

Thread delayed: delay time: 120000

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\Diagnostics\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\	Jump to behavior

Source: bZRL0uttVu.exe, 00000000.00000003.2042301083.000000000105F000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: \|turn windows features on or off\|hyper-v:wux:hyper-v4937
Source: bZRL0uttVu.exe, 00000000.00000003.2289460471.00000000010EA000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll/l>
Source: B0BE.tmp, 00000008.00000002.2543370445.0000000000654000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}
Source: bZRL0uttVu.exe, 00000000.00000003.2252997941.000000000118B000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: VMware20,1
Source: bZRL0uttVu.exe, 00000000.00000003.1927235172.00000000010E9000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: 10/04/2023 11:57:12.660OFFICECL (0x648)0x1fe0Telemetry EventbiyhqMediumSendEvent {"EventName": "Office.System.SystemHealthMetadataDeviceConsolidated", "Flags": 33777031581908737, "InternalSequenceNumber": 20, "Time": "2023-10-04T10:57:11Z", "Rule": "120600.4", "AriaTenantToken": "cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521", "Contract": "Office.Legacy.Metadata", "Data.ProcTypeText": "x64", "Data.ProcessorCount": 2, "Data.NumProcShareSingleCore": 1, "Data.NumProcShareSingleCache": 1, "Data.NumProcPhysCores": 2, "Data.ProcSpeedMHz": 2000, "Data.IsLaptop": false, "Data.IsTablet": false, "Data.RamMB": 4096, "Data.PowerPlatformRole": 1, "Data.SysVolSizeMB": 50000, "Data.DeviceManufacturer": "VMWare, Inc.", "Data.DeviceModel": "VMware20,1", "Data.DigitizerInfo": 0, "Data.SusClientId": "097C77FB-5D5D-4868-860B-09F4E5B50A53", "Data.WindowsSqmMachineId": "92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A", "Data.ComputerSystemProductUuidHash": "rC2kkStHpWGLvfAgmQZRz4w5ixE=", "Data.DeviceProcessorModel": "Intel(R) Core(TM)2 CPU 6600 @ 2.40 GHz", "Data.HasSpectreFix": true, "Data.BootDiskType": "SSD"}
Source: bZRL0uttVu.exe, 00000000.00000003.2041263022.0000000001082000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: VMware.View.Client12451
Source: bZRL0uttVu.exe, 00000000.00000003.2530988283.00000000010EB000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2530360391.00000000010EA000.00000004.00000020.00020000.00000000.sdmp, bZRL0uttVu.exe, 00000000.00000003.2520549903.00000000010EA000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Process information queried: ProcessInformation

Anti Debugging

Hides threads from debuggers

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Thread information set: HideFromDebugger
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Thread information set: HideFromDebugger
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Thread information set: HideFromDebugger
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Thread information set: HideFromDebugger
Source: C:\ProgramData\B0BE.tmp	Thread information set: HideFromDebugger

Contains functionality for execution timing, often used to detect debuggers

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005A10BC rdtsc

0_2_005A10BC

Contains functionality to access loader functionality (e.g. LdrGetProcedureAddress)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005A5A20 LdrLoadDll,

0_2_005A5A20

Enables debug privileges

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process token adjusted: Debug
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process token adjusted: Debug
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process token adjusted: Debug

HIPS / PFW / Operating System Protection Evasion

Writes to foreign memory regions

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Memory written: C:\ProgramData\B0BE.tmp base: 401000

Creates a process in suspended mode (likely to inject code)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	Process created: C:\ProgramData\B0BE.tmp "C:\ProgramData\B0BE.tmp"
Source: C:\ProgramData\B0BE.tmp	Process created: C:\Windows\SysWOW64\cmd.exe "C:\Windows\System32\cmd.exe" /C DEL /F /Q C:\PROGRA~3\B0BE.tmp >> NUL

Contains functionality to query CPU information (cpuid)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005A10BC cpuid

0_2_005A10BC

Contains functionality to query locales information (e.g. system language)

Source: C:\ProgramData\B0BE.tmp

Code function: EntryPoint,ExitProcess,GetModuleHandleW,GetCommandLineW,GetModuleHandleA,GetCommandLineW,GetLocaleInfoW,GetLastError,FreeLibrary,FreeLibrary,GetProcAddress,CreateWindowExW,DefWindowProcW,GetWindowTextW,LoadMenuW,LoadMenuW,DefWindowProcW,SetTextColor,GetTextCharset,TextOutW,SetTextColor,GetTextColor,CreateFontW,GetTextColor,CreateDIBitmap,SelectObject,GetTextColor,CreateFontW,

8_2_00403983

Source: C:\Users\user\Desktop\bZRL0uttVu.exe

Code function: 0_2_005B04B4 GetTempFileNameW,CreateFileW,WriteFile,CreateProcessW,NtQueryInformationProcess,NtReadVirtualMemory,NtProtectVirtualMemory,NtWriteVirtualMemory,CreateNamedPipeW,ResumeThread,ConnectNamedPipe,

0_2_005B04B4

Lowering of HIPS / PFW / Operating System Security Settings

Overwrites Mozilla Firefox settings

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\to-be-removed\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\temporary\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.files\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\security_state\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\minidumps\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\tmp\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\db\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\events\OC9oMrMV8.README.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File written: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\bookmarkbackups\OC9oMrMV8.README.txt	Jump to behavior

Stealing of Sensitive Information

Tries to harvest and steal browser information (history, passwords, etc)

Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\times.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857833.45e26519-596d-41a5-b290-e547b44111fd.health.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1d5599c8-3f43-42cc-8163-9a43c60a06d1.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829702.cde8135c-88c3-4c34-8670-7ef017742548.new-profile.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834580.6fc53411-ad83-4cf6-a5f6-905f0f3f52e8.health.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\background-update	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834608.65054280-9d54-477d-a3ea-afcb1f88e001.health.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\targeting.snapshot.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\shield-preference-experiments.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834620.c7889da7-33f0-4599-8452-58d47c58437b.main.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\content-prefs.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\events.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829744.7278f154-e8f4-4235-84c5-c5c1c6af0084.main.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\ExperimentStoreData.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834620.c7889da7-33f0-4599-8452-58d47c58437b.main.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1435a377-bbaf-4c9c-8706-0811a779fa3f	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\.metadata-v2	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\protections.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\808127e8-e7ed-4078-b3f3-7f09061a011f	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\times.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\key4.db	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\6fc53411-ad83-4cf6-a5f6-905f0f3f52e8.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\.metadata-v2.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\808127e8-e7ed-4078-b3f3-7f09061a011f.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834606.011115ff-9301-40fc-805e-ba07b7fdfce4.event.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.81ddb4cc-1d49-45f2-961f-e24ea6db2be5.health.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\search.json.mozlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\compatibility.ini.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\ls-archive.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\Telemetry.FailedProfileLocks.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\12f997af-c065-4562-b9f6-11000bb95c9b	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\extension-preferences.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\277ffbb3-8e94-4f3f-acac-7a401d130160.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\xulstore.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1d5599c8-3f43-42cc-8163-9a43c60a06d1	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834580.6fc53411-ad83-4cf6-a5f6-905f0f3f52e8.health.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\xulstore.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\compatibility.ini	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a5d6ec76-765c-4778-afd2-1e05a1554d8e.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\pkcs11.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\7278f154-e8f4-4235-84c5-c5c1c6af0084.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829744.7278f154-e8f4-4235-84c5-c5c1c6af0084.main.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\78267ebf-1fb3-4b11-82e9-903e54a2a54e	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\state.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\profiles.ini.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\45e26519-596d-41a5-b290-e547b44111fd.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829702.cde8135c-88c3-4c34-8670-7ef017742548.new-profile.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\3a40aaf9-3f8b-43a2-85e8-88e3ffc7666f.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\key4.db.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\times.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\6fc53411-ad83-4cf6-a5f6-905f0f3f52e8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829746.67aa4432-87f8-463e-b422-f6679add9971.first-shutdown.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\7278f154-e8f4-4235-84c5-c5c1c6af0084	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\05d02ac8-b2f1-4670-8541-db8ec2bbf427.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1435a377-bbaf-4c9c-8706-0811a779fa3f.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addons.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\ExperimentStoreData.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\45e26519-596d-41a5-b290-e547b44111fd	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\handlers.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\78267ebf-1fb3-4b11-82e9-903e54a2a54e.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cert9.db	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a5d6ec76-765c-4778-afd2-1e05a1554d8e	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\handlers.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionCheckpoints.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\session-state.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857869.95af30ae-acac-4802-b983-233d7fd3cf34.main.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\7d12ac42-15c3-4db9-abfe-259bc8d249ac	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\containers.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829746.67aa4432-87f8-463e-b422-f6679add9971.first-shutdown.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.a73949a2-5a70-4025-8008-88156c16bb4a.event.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\12f997af-c065-4562-b9f6-11000bb95c9b.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\content-prefs.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\shield-preference-experiments.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\15f01145-7764-450b-9ad5-323693350a9c	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\previous.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addons.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857833.45e26519-596d-41a5-b290-e547b44111fd.health.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\state.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.a73949a2-5a70-4025-8008-88156c16bb4a.event.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\upgrade.jsonlz4-20230927232528.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a7174184-f177-48c4-876a-8a51c2ed8fbc	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\SiteSecurityServiceState.txt.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829737.9f7a5e7a-2be0-4ff7-b132-b1f6e59a8e58.event.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\7d12ac42-15c3-4db9-abfe-259bc8d249ac.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\previous.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.81ddb4cc-1d49-45f2-961f-e24ea6db2be5.health.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834608.65054280-9d54-477d-a3ea-afcb1f88e001.health.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionCheckpoints.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\containers.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\events	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\times.json.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\session-state.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\05d02ac8-b2f1-4670-8541-db8ec2bbf427	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857869.95af30ae-acac-4802-b983-233d7fd3cf34.main.jsonlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\pkcs11.txt.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\extension-preferences.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\AlternateServices.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\Telemetry.FailedProfileLocks.txt.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\profiles.ini	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\protections.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\3a40aaf9-3f8b-43a2-85e8-88e3ffc7666f	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\ls-archive.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\background-update.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite-shm.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\SiteSecurityServiceState.txt	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\upgrade.jsonlz4-20230927232528	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\targeting.snapshot.json	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\search.json.mozlz4	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\AlternateServices.txt.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829737.9f7a5e7a-2be0-4ff7-b132-b1f6e59a8e58.event.jsonlz4.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\15f01145-7764-450b-9ad5-323693350a9c.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cert9.db.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a7174184-f177-48c4-876a-8a51c2ed8fbc.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\277ffbb3-8e94-4f3f-acac-7a401d130160	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite.OC9oMrMV8	Jump to behavior
Source: C:\Users\user\Desktop\bZRL0uttVu.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834606.011115ff-9301-40fc-805e-ba07b7fdfce4.event.jsonlz4	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

⊘No contacted IP infos

Name	Type	MD5	SHA1	SHA256
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\AAAAAAAAAAA (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\BBBBBBBBBBB (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\CCCCCCCCCCC (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\DDDDDDDDDDD (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\EEEEEEEEEEE (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\FFFFFFFFFFF (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\GGGGGGGGGGG (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\HHHHHHHHHHH (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\IIIIIIIIIII (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\JJJJJJJJJJJ (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\KKKKKKKKKKK (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\LLLLLLLLLLL (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\MMMMMMMMMMM (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\NNNNNNNNNNN (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\OOOOOOOOOOO (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\PPPPPPPPPPP (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\QQQQQQQQQQQ (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\RRRRRRRRRRR (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\SSSSSSSSSSS (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\TTTTTTTTTTT (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\UUUUUUUUUUU (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\VVVVVVVVVVV (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\WWWWWWWWWWW (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\XXXXXXXXXXX (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\YYYYYYYYYYY (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\ZZZZZZZZZZZ (copy)	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1000\desktop.ini	data	AE113EA3CA7339CC3C628D5DD17EB455	58448715407CC03FCB5ACAAB9711292EE39741FC	1BE8C6A1DA02579283BD0630E9B99F1EB2B708E444A8DC5B3C80C7B26F985355
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\AAAAAAAAAAA (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\BBBBBBBBBBB (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\CCCCCCCCCCC (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\DDDDDDDDDDD (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\EEEEEEEEEEE (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\FFFFFFFFFFF (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\GGGGGGGGGGG (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\HHHHHHHHHHH (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\IIIIIIIIIII (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\JJJJJJJJJJJ (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\KKKKKKKKKKK (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\LLLLLLLLLLL (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\MMMMMMMMMMM (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\NNNNNNNNNNN (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\OOOOOOOOOOO (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\PPPPPPPPPPP (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\QQQQQQQQQQQ (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\RRRRRRRRRRR (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\SSSSSSSSSSS (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\TTTTTTTTTTT (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\UUUUUUUUUUU (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\VVVVVVVVVVV (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\WWWWWWWWWWW (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\XXXXXXXXXXX (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\YYYYYYYYYYY (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\ZZZZZZZZZZZ (copy)	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1001\desktop.ini	data	6B262954E968B2FA3EE63DB09BE21873	8902AAD1D8FA6F6CF806F75919E022A3E26534DA	50F96B45D38A299F03101D4CB8A342C715396047DDE7A252D3F856525F201ACD
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\AAAAAAAAAAA (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\BBBBBBBBBBB (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\CCCCCCCCCCC (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\DDDDDDDDDDD (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\EEEEEEEEEEE (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\FFFFFFFFFFF (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\GGGGGGGGGGG (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\HHHHHHHHHHH (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\IIIIIIIIIII (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\JJJJJJJJJJJ (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\KKKKKKKKKKK (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\LLLLLLLLLLL (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\MMMMMMMMMMM (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\NNNNNNNNNNN (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\OOOOOOOOOOO (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\PPPPPPPPPPP (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\QQQQQQQQQQQ (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\RRRRRRRRRRR (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\SSSSSSSSSSS (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\TTTTTTTTTTT (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\UUUUUUUUUUU (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\VVVVVVVVVVV (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\WWWWWWWWWWW (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\XXXXXXXXXXX (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\YYYYYYYYYYY (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\ZZZZZZZZZZZ (copy)	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$Recycle.Bin\S-1-5-21-2246122658-3693405117-2476756634-1002\desktop.ini	OpenPGP Public Key	FADB6F8B1BED8E7704A223781BA9647C	83717CDCAC4D4EBAC7600273C66F1F4023B8B79E	A1FDA9D61D102916D82BF5FA32E276B41DAEF634645A99FDE245F1085DB54D6A
C:\$WinREAgent\Scratch\OC9oMrMV8.README.txt (copy)	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\ProgramData\OC9oMrMV8.ico	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	88D9337C4C9CFE2D9AFF8A2C718EC76B	CE9F87183A1148816A1F777BA60A08EF5CA0D203	95E059EF72686460884B9AEA5C292C22917F75D56FE737D43BE440F82034F438
C:\Users\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\.curlrc.OC9oMrMV8	data	74A50B515F9B50537CB0FC2878EE78F3	44B98D19C34038E406EAE241F2BEB8421364BED0	123F94FDC5E7E0F1F8F7C2CA5A8B1879D9A26C58693411FC481545CEFACDFA74
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\CURRENT.OC9oMrMV8	data	FA9EB2F2D4879C8829F94D0E9951CDC0	55C8FFFA20A0FAF73AB645E5ABFC181259FE2E4F	C13BF1257A2C5E8E5F460C5324CB2B1D04CD22E62A826AD93E240A60C0B17148
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\05349744be1ad4ad_0.OC9oMrMV8	data	C46B0D2A7CA4C232049E049D92956CDA	B817B8A0EE5F8BB8F9283B4558A2708F9D895CAB	BD8D3F05332F85F41526C4D30246AF9083FAF35DC6907BFF851E90D1B19023BB
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\076dd576a8178299_0.OC9oMrMV8	data	2B29BD41343F6837537BF2147429AB79	ACF723286F679694843B0EFCCD51933801E7720B	BF8641FA229B93BD85EC24C456D30F471761C0C9F20518337C5F9614F5C4D8EA
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0786087c3c360803_0.OC9oMrMV8	data	6688B77214F11B6E0FCA07F9C4872756	3DA2265E1CC3826D5509BCD500071271833EA526	151004DE149D431E73A9931C563B9F7CA93465265FE9372FBE2DC1921A304F02
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0998db3a32ab3f41_0.OC9oMrMV8	OpenPGP Public Key	78AAE072B916EF273C07748ED3735FF0	5E3575E703AA031131E1742B1DEC9DC896BFF0D2	D78E76DCFD9291E1691FB0DFEFD2504E14A29D1D0001B1F7F0D84619370744C6
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0a71ed411241f66a_0.OC9oMrMV8	data	1DE8867B14085D74100901058E882C9D	655500C93BA52F52B881DC5EAF04C42295EAB0E3	A18182D8B3B89F92672B021FC0E6702162E77A3EDEA5D09A176EADFD9B95BA97
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0b05805acd0d1882_0.OC9oMrMV8	data	196E0889485852D7492F647EBFE19B7C	554F215809C0A23B655B385F0EE9C6D564692B91	005DDC92F282D41A04A68D4E4941450902FCECE253C6FF9C756213160279A8F9
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0f25049d69125b1e_0.OC9oMrMV8	data	1BFAB6D376CFA4C34359311DE8779A97	713F97016A2A487D0ED326DDD1E278C3C5B3BB9A	AEBEE762F80CF4A7E3C6EBF3E6419CA3E5A173B0E400E27D05456E7CA41613AC
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\the-real-index.OC9oMrMV8	data	BD6331BB68DBD2B8775A2B488CCB0A2D	5058F6020BE6B522009EA2831D97D3660A917D81	5FFFE336F0266AF33B58D2EC21A7424835B5027902912096EAE43C882A0665D4
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index.OC9oMrMV8	OpenPGP Public Key	91A9F172CFC64C82CAEE9C7CF4AB235F	E0C6D8AB62E4766880835908EA0A58D80CAD101C	F0BAA7D5F4B43569AADF0CBF48DE8C84BF43015E87C287742347B7E9C7C7039D
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.OC9oMrMV8	data	7F52219A7B18C5FE54809606BFAECD37	AF443A6E2C4040934E485A94A08EB2669D050A00	42C2F421984DFF3B23621FA725943A29DD6F6015F4F6F603E490E5AF2D18D05B
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old.OC9oMrMV8	data	D7714D5DDAE32779E2E4C9E2195C9F28	3B6CC9F5F278E819DB4E09B749FD2DF2ADC5002F	4141313AB066733533805AD44A8FC8D083D7596347448FB003140BABB51DF50C
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\CURRENT.OC9oMrMV8	data	976E92E564B34359DFD1F909BD15DD0B	E3DD4AC88AE0EC19F794B701BD0EC865F48E0D05	E74DB70E23F81318A7FB62753CD0BA48597A9E889797DC57FF68755E82F9BBD6
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.OC9oMrMV8	data	E1C1AF352BA07F5096E208BEF4D63BFF	CD82C451BF66EE2FA82A41275D084900C6A0DA8B	BDA186DD21892DE30664A1663D30959814F85341057543C4A66BAF299BB3872D
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old.OC9oMrMV8	data	EABEFF65A359CEA06C79FB906CB05F4A	73D305DDE08F3CBE9F0D22E6612FAD25D5CEC9B3	8023684DFBD912687020BF80D5CEA9FA7EE55B5F871C13BE333EF800B492814F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\MANIFEST-000001.OC9oMrMV8	data	C6BDA0332EC3DC843A4471D30B648614	0CCEAA6BE64780E92CC3687FC29E0D88F50488F8	49E0CB5FBEBED2CF78611E5AB58ACD4F3B6EDA082169F04EEAFEF975877A8BEA
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LocalPrefs.json.OC9oMrMV8	data	CDC9D45EBBA10A60B59128DF06539644	0A4B1FFE485C0D7F5A74D2C357A925155CE9CA27	0AAEF1C8EBA2BD381BA4798E7317F6630B1B7E84904D987EF6BC542D64446D04
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\MANIFEST-000001.OC9oMrMV8	data	BCCCEBEB9CFD8541D40AB0F78D4C18F1	F1509095A5BA64EC52279EF62B5ADDAABA22520B	7FFC5BCDC17E0AED3963F9B74AA2059CF7F093F81895963B2B7D71CEA76F4076
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Cookies.OC9oMrMV8	data	50F7CAEEDDEDF7CDCD99121EC26AB7C7	3A5F8442740038F15EB02C8778550D826CBFAD9D	ED5FF54500846876EA518723E4DD2E1D4F6897DA66101392A37C5E2218B6D334
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State.OC9oMrMV8	OpenPGP Public Key	CA80233DD4290B33DB8415AD80332084	86AE990503C17963D75767DA88DB6EA664239B2B	037A191F0E6F7CBC9D953FEEE70408C8450D3C777DAAF5FEF6AF24B6AECA79A1
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Reporting and NEL.OC9oMrMV8	data	33E73D445D92339BCFD7B5E34BEAC22C	E57B051FCC2967FE884672494C449962EC2952B7	7E8C98EBAC734977834FCA70738A413894C58D38DC47F9A25F0ED39784EC61AD
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log.OC9oMrMV8	OpenPGP Public Key	09A095A3707037FC3F44AB287B20D474	8A48DA4D1343C495B63442B9BB4588E86824C7DF	C8147FE64C8DF427725B2F3B0D20064BE4558CED50BBF3FF282F194BD7929C88
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\CURRENT.OC9oMrMV8	data	503890192F1DF530FA3D7104CCE5C610	B7ECC1A55571FAF83D80BEFD8CB8DB066A15E835	D7BA720F1382DF079867C4C2A641C1AA84AFC99BF015B9F830E5219305D5A2E8
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.OC9oMrMV8	data	98B4093BA7F38215A125539A28B566F4	47A214019985C468F70847B4D571C5D8151CF9F8	37C92193E7268C72D5A731A4C9074BE28057C02431996DB9425BD468F86027CB
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old.OC9oMrMV8	data	B8CDD1ED1C74880F32411B597A29B9CD	822287ECAAFA15E29873689A109CABA1675D6B1A	F7A82C8B44943361C5619FE397D32F3C7A51869F790CC4330C298BD2D916517C
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\MANIFEST-000001.OC9oMrMV8	data	A49ABA6D748F3E6BAB1FBC9644A36366	B2E2363AE2C67AB58EFDDE44077611CAE599DAC8	AE1D9891B357336C1A9DF970E21EC7C028C3E6E8598499D749BDF5DDFE5BA711
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\VideoDecodeStats\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links.OC9oMrMV8	data	E02078A1E948505A24809511268B63A5	BF2B5D8CB028FDB427545ABCD534AB0BAA7F000F	2B2312966A01DF78E0451E0FC1F3BB2C601876A3634E28C84594AE19E1948A71
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\000003.log.OC9oMrMV8	data	EE0D692983C627E8DE60C35EBFBA1DC9	7F5DE187B4BE31FFB237D490841D70E713A0ED83	EA06F2B0DCAD02636B9D23C0245BF71731488918EA060454F870F245419E594E
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\CURRENT.OC9oMrMV8	data	3F3136583727D5B19EE3A40D1CF70B50	3AC1A3849CB0CBC588B7B18A2BBCC0A52794B757	F3120CD24520C49200F3A6E9DF0723BD23B755E92815652F9EFFDF1C3606D818
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\LOG.OC9oMrMV8	data	F6EEEAE29D1A37CD83F38A9F518A2A4F	3C3F9DA0DF6AE8007F2DA017FE42C30BF4CF29DE	5B1269E056DD13BEEEF005CADA9BC3A660F30214894A27608ECB0C0009AD92EC
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\LOG.old.OC9oMrMV8	data	50DA3D4649F9F151C8B7182CE9B67A3D	84A1BF207E8D0F064EA15D60B0BF6F92BDA07EE8	3AB9757DD18D5ACB1793E12DA9554DB90E98F642250D7E43B2ED0250BC1452A8
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\MANIFEST-000001.OC9oMrMV8	data	0232620C0DD7F432224B03C30D7DE13D	5658759E43F97ED3E671529F99A22D391D6A3F3E	8128E46C1FB9C6F76E3B2CFCAF963ABDA3A85DB8CE83D74B5E5C436E6CAF054A
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\000003.log.OC9oMrMV8	data	758801162F273764FDDCB8469328EB79	FD2FBFC5EAD75D5653996407AF29BF0B49EAA95D	B4F43919D44239426B752E71CAB238C3AFC379CF728A656E2E0CA12A06D8AD81
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\CURRENT.OC9oMrMV8	data	2CBBD41B01281A709D123BCAD5798324	DD644B173648008DBE35ECBCE092BB3E5D278343	62EC555D50990E1D73EA9776191F519921B2D873F0F1031BD4E760CB4587A058
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\LOG.OC9oMrMV8	OpenPGP Secret Key	42521F2BAE3317E5D345E84006C10537	49565FA97DC730751883D88416D8679BAD318CA3	431FECE0757E0B2876D94CC8E2FECBE7E40B00CADAC44F12BA6B542FB6708238
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\LOG.old.OC9oMrMV8	data	88C132D4E4BD86613ADBAB9FB00A3DF0	1D9879149A5D03E1552F123F3200C28C51133E2C	148271533784BA32C4AE9AB090CDDBAA019A2F534FFCD078B1CAF2089E0284D6
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\MANIFEST-000001.OC9oMrMV8	data	635109571E94192268D4753F17825125	35135EE41FF48287E140B31798131807BC92059B	FD0F62C531600F441A00C9001DF807748127E7EB4D6A431DC6195F68DED1CBDB
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\shared_proto_db\metadata\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cookie\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\Linguistics\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\Adobe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\LocalLow\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\ARM\Acrobat_23.006.20320\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\ARM\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\ARM\S\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\ARM\{291AA914-A987-4CE9-BD63-0C0A92D435E5}\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\CURRENT.OC9oMrMV8	data	0EBBFE299FACF52D3682351BF4914EA6	5EA612D229FEE54113AA87D0FA90D1343CEFF97B	351FBFCC9BCBCD5D0DDA5069FF193E6A94EDAE0404629E5B2413170BADFE66A9
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index-dir\the-real-index.OC9oMrMV8	data	29FB2F189D9B0E5E0095A5D7BFE85C22	0B9D01985BC4ED7E6268CBAAEABD132EE901649B	0CEA61BC9E0A62441FAE4B0592F2024A8869F6538E48466DF706DDA6CD9D5DB7
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\wasm\index.OC9oMrMV8	OpenPGP Public Key	8B007660B810A0A4060E9FEFB3E661EE	9370D536B98444B9DB1D87AFC9D9A1F638B3B144	FE80AA591A68F2054D4E7BDC0C0E1FE11F01602B0B37CE8E81BCE59A9DDDC219
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\LOG.OC9oMrMV8	data	83C4731A2C81668E36382C4B7A067B82	1DCB807D69A2FAC2FB296CE819CA27DB86A0D0EE	8427C7F329A203EA0B92DFBB553361861C1710430D2B651A076B17A414C51880
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old.OC9oMrMV8	data	CEFB443BFE372469812FE64D58A789D3	392D621B487152B643A6AB5E9E3ECD3382285734	0C3B4DA0741D2214FD7554B3BE9B301077B8609814886A403D9A091AF66526B0
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\CURRENT.OC9oMrMV8	data	BC3D7D35E3AE1C70AD5D9F64975ECBBE	29BC5F9B701D30177B3FA7A3DCB2BF21205ADBE7	260AACC0415D971E78114F98D7221EEEDAB745D79DDCD6D32E27BE25D048F194
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.OC9oMrMV8	data	DDD3D7B43B2DCAFC3D40DE95530FEA91	E5368B7C8392FEC020A02A6A8440817C7E7B3BF2	A78C4D15CBBD226E1B89214EF46F34EC8460953E12743369C22697038CA3965C
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old.OC9oMrMV8	data	BBFF125BD5744BFEF2CC8030AC6605B6	49CD615A2C884F6709B23749879422FD3D111D53	A27B448FA05710421CFA6FB125C56F7E042331F91D7E762C955EDF2EFAACA919
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\MANIFEST-000001.OC9oMrMV8	data	A8F539D98EF798EC4EA8D30688F60DD7	F999DBD2AE9507EC0CFD4ECD5C58BB4CB59D85F6	B3BB7B3F968C12C7C00C213616B54577B1F3627011B07BE1F993BEB6FBFB23A2
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\LocalPrefs.json.OC9oMrMV8	data	0F321E6DC3B768BAF94A4014E64EB0F5	22C085D20013387D86A8A1A013D07C2BB9320229	802CA6E9DAA80A1924C948E6500B2F69E73C3C45766012D62F881C09110C6071
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\MANIFEST-000001.OC9oMrMV8	data	2F95F945F022519294FE290B5E8C61DB	8299E3FCADE3CE1624B0A8247AA0E9ED8E83CD0D	B31A4101B0A3CF94CA003D31EE177A60B9EF4FDAF5EB5BE0D0BA018552F0320B
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Network\Cookies.OC9oMrMV8	data	28768AA0DA48920BF57946971128FD8B	1CFA9A190301997A2A3DE0B6E5D5B29DE2D3DA08	7DCAD6EBB7CA2F0F356E0F22628422E31F7ACFA0E53E50767114CB2C9126B5C9
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State.OC9oMrMV8	data	C393F6D1369521FD643592656A516C23	40DE7B27A615AED68179BBF3BFF76EF79F20D14A	4897AA0658DD2658F920FBAFDBD8A60F49A92C0B8414AD6F2737F95227905F4E
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Network\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Network\Reporting and NEL.OC9oMrMV8	data	508E26309C207A6CEA0278884520EE0B	7FBB384DC48B88BA596256FDE814EDC10181AFAB	5B3C425FB1A9C1DE98FD10166A59C9852AA8F9BE6634AF6908331883636E2235
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log.OC9oMrMV8	data	3D4A3D131F19A59CC32BCB4DD842506B	91C4C00160964A4DFD661F9611AC0D7233EAF724	63A12F63FB5AC6181C38413A87D561A55FAFAD644929C1A460F57B2CE3853BE4
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\CURRENT.OC9oMrMV8	data	593E0F34AA0E83916777BB010E5E962A	CD87738FCAE0CAF3434E7D23CA841F9875F6DD96	B0E03F474CE2B1F56297A90FBE1C9FD1842C81FB40474D50462D304E72CFA07E
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.OC9oMrMV8	data	101479422988F73752D496B320C53196	3C5CCA034983D101BFE123F05ED9E7905037798F	F6BA9B558025B72A74988EABE219E7458EE264AFCF920E53629FE2992399E336
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old.OC9oMrMV8	data	690C4FF8ED31955B04562757B8AB75E3	79D1D9E14E824F0CD4DD24D61BF4CFB36DF0E979	0AD0F84485085A2E9267B83C1AF9049DB7EC3162A9D0616736F8C8512388A710
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\MANIFEST-000001.OC9oMrMV8	data	E5EC0915DA4A07AADDA639B04CD4D59F	831D4DDACFCC51030FB412FDCE9AB174465B3EBC	FC81558DC08CBF9AAE317A10BC6FDC8CCDBD0EC798E88787FA91B927628FBDF5
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links.OC9oMrMV8	OpenPGP Public Key	F39B72DFF75100A789B837C5C3A16775	2B95554B3FD10889AB8BF7823ACCFC72A47521D3	65B7138B27FC6E158E706661300AA4242DC20CD74CE3B358826BEF28E199003C
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\Cookie\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\DC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\AcroCef\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\Color\ACECache11.lst.OC9oMrMV8	data	8A25C9DFC0F80416E4D4E23B7948E9BF	49A4B62D7D614E959BA95A4DC93916958A148316	79B6004BCD82D818B60EEF222C58AF08826B570ACE7AA058C4C0A236236F9315
C:\Users\user\AppData\Local\Adobe\Color\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\Color\Profiles\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Adobe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\CEF\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\CEF\User Data\Dictionaries\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\CEF\User Data\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Comms\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Comms\UnistoreDB\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Comms\UnistoreDB\USS.jcp.OC9oMrMV8	data	06C614996AD9156D1C7D14BF378F7F04	015D3B3B8722E9CBD656F973B2960FC2B78B8404	D4AFC5A934E0C3655CF93679181E6D4ADA7A9417FCC2D9DBF1F9B8A1024F6E0E
C:\Users\user\AppData\Local\Comms\UnistoreDB\USS.jtx.OC9oMrMV8	data	CA1EAC6FCD0B4BAAFD7A0E23D1307D5D	DC2F92203B74D4F4CBBEAD17B6FC22FC41A7CAD0	6D96677D4DB30D65550A253EDED7DFA2E0124D84E2565428AEC4B71555197BBF
C:\Users\user\AppData\Local\Comms\UnistoreDB\USSres00001.jrs.OC9oMrMV8	data	451DB23168FF74BFA0D022279941B8D4	EE59019A36FE780CB280CB821C8C29EED8682C11	51A9FAA58ED36683BC1C6791923669F6078DA3559E43E2C2C7AA47E360C8B945
C:\Users\user\AppData\Local\Comms\UnistoreDB\USSres00002.jrs.OC9oMrMV8	data	221C5878A4DE932A04842D73351195A1	2A226072E52B52F945AE32EED82EFEB1CDB3A1D4	49A9A8F16F1DC5FC931ACB992B0A6D540B1510A95A065D7652828ACBEC934EA0
C:\Users\user\AppData\Local\Comms\UnistoreDB\USStmp.jtx.OC9oMrMV8	data	48A71DEC9C2768EF3124B24CED919379	C2AAC6367FF72CDA4D9FD56ED5039221D177176B	CB385099434F04DB859E05657EF7247B2F952B4D86C3863708F222A09A35B2EE
C:\Users\user\AppData\Local\Comms\UnistoreDB\store.jfm.OC9oMrMV8	data	C92812ADCC53A187C4A9694B2A5CEA73	0FA36244DCD155FEC9EFDB5F642AFA3FBB8CB0D5	2B65C2C3965D1CF3BE3356C34EFBE093ED5C94DFF174B3E2ACA2C4B2D26C6324
C:\Users\user\AppData\Local\Comms\UnistoreDB\store.vol.OC9oMrMV8	data	D2979D92094004AE0634794666E089BA	5E686C015397ADAA71E577D398CE7C2A42E920AB	FADEB78A7F6D176859D3B6BB60FF3774790E5129A5EB611B3F3DB0801C79FA86
C:\Users\user\AppData\Local\Comms\Unistore\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Comms\Unistore\data\AggregateCache.uca.OC9oMrMV8	data	24123DC370F94ECC08BB4B32A3146F5C	637D34D79F396983FB63BCC69857F7A7EA267606	EA60FE97909AAF8334BE6AD841A056462D62E3984294BB5450D2BD1C6E181838
C:\Users\user\AppData\Local\Comms\Unistore\data\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\CDPGlobalSettings.cdp.OC9oMrMV8	data	16B04FDB3A47A9CCDF687B6EFB2E8ADA	85E07159A004FBE8169D6448F5EF4C1CF695CE2C	D7BC3A8327F7506B6B720645111E14C262BB3F5660342640965F76AA67AE009B
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\Connected Devices Platform certificates.sst.OC9oMrMV8	data	B4192487CF7FAC905767A1E7F9295397	561B56EAF583F2D365EB60A3EB15537CCF49A255	43DD8DCB1F19C3CA14F7AFFC4E51EB5F4AF6F569C903290B74CF2BCBA7476F33
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user.cdp.OC9oMrMV8	data	D2398396C3F628044CA97EC2AA5200F6	A8737DF53EB7470FF96A412734F0B6910B60391C	E2EB64AE5C8734603CEC55BAD68C80320934E0324457858623E2C5B56057AAF0
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user.cdpresource.OC9oMrMV8	data	F4E996988392F78C9349DFBBA956F89B	B1173FDF8C6B39EB65E553FFF324313228894658	2D2092B67000DFD1C7BB255E18C3D4AE2C43CC82337691200D0A39C51648247A
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user\ActivitiesCache.db-shm.OC9oMrMV8	data	E4752E505DF098F17ACE6E373FECC256	31A93F3312ACBC7E8A49C754C9C2B496855D364A	A7DDF5A7C8C2C34A1F6C02109BEECDCEFFD0AD4D0B1D93F839B03D82A0C30F38
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user\ActivitiesCache.db-wal.OC9oMrMV8	data	C6384EB91099F8C4ED7DF2F83F56D038	D82C6A530EDDF54C9FA03DB765C338CC75FD8699	7AFE63016663DF4A9A58A375ED364CCBA3CA51C94D5F260E2030D3385401A1B8
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user\ActivitiesCache.db.OC9oMrMV8	data	5F37AEC93DF9BB06BE171844475FAF97	8B11C0856E60BB5FA71B5115BD1EB29AE503CA65	BBEE8D0D2CC136D28DF492EE7B9AA114F6B0E027A748A7F33B59454F4CB5B145
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\L.user\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\ConnectedDevicesPlatform\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\AutofillStates\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D36B0-970.pma.OC9oMrMV8	data	8F350A9182F825E02FA5904993C5B152	AD64200C8D359AEEB08D45AF52DA9E4ED21A3DE7	2BB9AA18C7F88506CE79369A98622B1D71982D9A4037A6BCBFD3A4C17BBA8EDA
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45E8-1230.pma.OC9oMrMV8	OpenPGP Public Key	27B8DD038EBE9619D866E38C8EDF3BB1	346FA60DCE240ECBBF563E156954FFFCADA271B5	810D8DD34371E74103CBC3DC00DD2D5B94B5EA038A510C1CBF76BC674B3E3935
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45EC-1900.pma.OC9oMrMV8	data	0018885768181C68729220E7DC139AB9	EA1799FAB45F587F3528A69283535DD550BC4932	842A2FD29F2AB57331EAC2A125EB7E1BF947BE980DC2AB671672EF64370319F9
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45EE-1AB4.pma.OC9oMrMV8	data	FDC3202513069B616ADA5DEDD98DE30F	72D7851DEB4AF5C591136AEC4AAC7FF57DC3D19F	9B35B89595A3CF4EA4A17066A0F52E3912D78D293C3DA7A3FB09CE00EB9B7038
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45EF-16F4.pma.OC9oMrMV8	data	85349360C4E5786543C9FC25E295FA45	A84FAE27B6B6387ADB37C8CD84695262CDE255A8	40C63465105F83BCEA473E65F0F59246CD2EB0E601280E65DA000693BAAD9A82
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45F1-18C8.pma.OC9oMrMV8	data	35BF9DD115AFEF8B18DC268910E68520	7EBFE50404E3AC81C344DE941953A5996DCFCF7C	1D875CC7722FF1013FE00891D65350C48C3DCDD908D77154C8BC4BABDE840D66
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-651D45F3-1954.pma.OC9oMrMV8	data	8E9D4616F145B5E88B7E58B205174F45	DDD5597A4B315F1A83CDCF1BA41574C37803B0E3	1BD8669386F2766822EBDAB28356DAE9F5C303421E664ECFA77A44850E264ED6
C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\CertificateRevocation\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\CommerceHeuristics\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\attachments\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\reports\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat.OC9oMrMV8	data	4B25B8B896D1E898640D94E44A3E6552	7AFDD6D5C5F1BBDE01669EA98CA2AFF86846E50F	743D833CD6665C5F852F38FE95522C93AD42400270A4B70D0BC4DCF598780BB7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crowd Deny\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\FileTypePolicies\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\FirstPartySetsPreloaded\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_0.OC9oMrMV8	data	5CDB33C2DD950D7677E1876143625571	3F95EC12EC46E1BAB1CF07B719106E6A6DDA1249	609D5A9D1CFB7B8B0F4634BDB99C10ECCFEB3B30E213CC517EC5EA161FC00AD5
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1.OC9oMrMV8	data	C3F9FE52A34F3386640724099F8404C8	2342389D838ECECE7AEE083F9B1CA25AD99A05CE	CFFB76CF4CDFCCB620D7DD716CCA6341B7BC8618DF099C73C62A4C92E343E455
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_2.OC9oMrMV8	data	48181B4523A1B0C3BF33F824D7C2FA0D	7918E87F2C48B693BB5EDD675DC6763768846261	AE2D35FD945D6D35CF04FBA017ECA190BD802011D011147D9EF1E17B40C9FD09
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_3.OC9oMrMV8	data	F0BA9350970E1D918E0742927FE26A67	A2D010660CC3E0D1519A42B03B41E1C52476F54D	71499740DF77B4E2917DF009FD25D82D491508D77AD37554E222F5724C8E2FAA
C:\Users\user\AppData\Local\Google\Chrome\User Data\GrShaderCache\index.OC9oMrMV8	data	EAF75E0B3C6767FF6F980C21B7EBDFBD	0FBAD9352DD38A889FF7FA18541A0D1180F914A5	EE8D81A197DD7DAD7523E42ECD53824ACD87334D29FE2FB73BC18A9EF6D96459
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_0.OC9oMrMV8	data	FF57CE842F0CE6A63E70DC5111F34C3F	002219317D40FB7D8992DD347D21A68921380EE4	A986C74FEF062FEACAE7DCF1D1613D4AA74319C610C6107AF6BEFC1C3F27CACA
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_1.OC9oMrMV8	data	641BCF8412D2F66B217CEE6408F1454E	18C6F49D7D71A73DA64F738ED2D05F52E7386F2A	DAFC8B36B83A4C741346AE2D50D9D4B9B33665C08FAE524221974F9815B10F92
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_2.OC9oMrMV8	data	527AF5A3BF8BAB25E231ACE431B80B01	0B501ECDAAA24C88A4E3C7628DBD88A487B407E4	27BE72A6396044844EFB1400C1EDB36D1ABEE499930A0752361BB889B1485872
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_3.OC9oMrMV8	DOS executable (COM, 0x8C-variant)	C2FA7F1C2068CA544F505E71E1CE5050	A07C2A4C5F5952DAA5E6F6F540A68BB8B393F7B1	C16B491116CD7805AEE1EFD66C948D20159A0D245F82B00988E57700F06D0ACC
C:\Users\user\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\index.OC9oMrMV8	data	11FD8D697AE1609560C847B60A2DBB9A	D2CA4381FD645B7C5B67B758E6481790B9D6D54D	165AB2C18557B6A3D95C3EEB0C03C4E183F5CC5C03C21D62DC7A4597B1DB055F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser.OC9oMrMV8	data	4287495267DBCF373A9B7746E28E3D55	82D09DC555C02429F2C4B5B2BF71C83BEDCFC644	A13122D95FA99E4CAE7C04DB995DDC0BCE8EE947EC2C878FEDAE5A16F52C4DAC
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version.OC9oMrMV8	data	401C868EDA86C9ED89CABFC2EC96C59D	241DF46EBAB46F728908CFFC1D8B267C9F22F1B4	D938EAD15E0BC43A4380D25E3413B72BF0008470844ED0226D024E3F302ADD00
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State.OC9oMrMV8	data	2F6C11E79B760B5D3953492160E6E7F7	C42EAF123E0897931B5727881A950E0958A5B886	C52E0CCB1BC69B4677CA82F14C4254EBF326F3D23691FDEC98F6386EF2609783
C:\Users\user\AppData\Local\Google\Chrome\User Data\MEIPreload\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\MediaFoundationWidevineCdm\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\MediaFoundationWidevineCdm\x64\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\OnDeviceHeadSuggestModel\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\OptimizationGuidePredictionModels\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\OptimizationHints\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\OriginTrials\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\PKIMetadata\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\RecoveryImproved\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Safe Browsing\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\SafetyTips\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\data_0.OC9oMrMV8	data	EAEC14883C7A05AF1274EE240FB928BE	DE01B4ADFA44840FA2B5BA927333BD3C2F4C52F8	1E6D858338EA79CAE9B8030175A18DAF9FDC9AB45265569CF708E293ECE303F4
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1.OC9oMrMV8	data	0E5EF4DBE0D9262F34F84E99914B40FD	9BE223C3C9E655701160E780AAF7EB7DEBD6BD30	B5955685E1CC22D99C2D76DEA1E5C4B17AD6F1C5354903A4371A80BC68698873
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\data_2.OC9oMrMV8	data	F8C85A0A432791BEB7A4065ACA590F94	36C85377317BFC44CE70B89A0A05450465FF7217	888748E4B121C23C1F09971C8CB6770EE7E052ED1B421A62D6BADAFD584F8417
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\data_3.OC9oMrMV8	data	6A17A208937A0932F3E5854506C762BB	7C63A27F464969335ED4550B1D28F13857856BBF	5BB0E33C8AAB5720383A0CEEB1DE96D38E52CED9612F03A6CF4469B1D1AD3589
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\index.OC9oMrMV8	data	B78530AEABF44324B6C48CDED8CB057E	DAD382CA68F06D72155F8F8AC0146C5AB458C805	304EAEE80FEB0EAD89B5E5A4B19526B8EDF1DFBE24A3D0EA6DA2CD830010AA8B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\TrustTokenKeyCommitments\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Variations.OC9oMrMV8	data	6E600FFBE2293F101C242DE2ABCBB56D	AE1B488B504DB773F7EF5CB2AB91C090A9761D9D	0C63593E8E67EE8A7A27B5B800B7EE921A78CDED20CF14BC1995F205B5B9C4CB
C:\Users\user\AppData\Local\Google\Chrome\User Data\WidevineCdm\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\ZxcvbnData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\first_party_sets.db.OC9oMrMV8	data	5E50AF3222DBCF6486480141326B0A91	C492B18AD68CE41BD078E716831F68BC32BD9BCE	448CB90B40BBCAABA2CA60A04C18B57B2E74A1CE4B7E441DF5A6A346F6FA1C38
C:\Users\user\AppData\Local\Google\Chrome\User Data\hyphen-data\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\pnacl\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Google\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Microsoft\Office\16.0\WebServiceCache\AllUsers\officeclient.microsoft.com\4213E0EF-830D-4105-8B8F-FECDDA39894D	XML 1.0 document, ASCII text, with CRLF line terminators	B6EF572175FE78FC89EAAE777D584AC6	215E7D8CA9E249FB3993BD8AD1F6D170EA120BA5	8543A9DE61CE12E4C9D033F36683A8C3DD19AB4138BA813C6C42E9715C1133DF
C:\Users\user\AppData\Local\Microsoft\Office\OTele\onenote.exe.db	SQLite 3.x database, last written using SQLite version 3023002, writer version 2, read version 2, file counter 2, database pages 1, cookie 0, schema 0, largest root page 1, unknown 0 encoding, version-valid-for 2	F138A66469C10D5761C6CBB36F2163C3	EEA136206474280549586923B7A4A3C6D5DB1E25	C712D6C7A60F170A0C6C5EC768D962C58B1F59A2D417E98C7C528A037C427AB6
C:\Users\user\AppData\Local\Microsoft\Office\OTele\onenote.exe.db-journal	SQLite Rollback Journal	473B8754AD273B90A1FE174BDB6E3896	24976CFAA5D883E14009D7D8D4B0868B9F742C8B	6852D980DC7482615141096398E014450984082A0BFE5861B90F324BE0B28683
C:\Users\user\AppData\Local\Microsoft\Office\OTele\onenote.exe.db-shm	data	04CA37D4C97B067842A4FAA4B523227A	E70F82221E0D72EC996EFA3E38826C1F5974A298	208F9885C3F73092A6CB0B30AB785DC9D51B263D4618BEB35A1AFB71E2F31874
C:\Users\user\AppData\Local\Microsoft\Office\OTele\onenote.exe.db-wal	SQLite Write-Ahead Log, version 3007000	B7BECC20C9F1DA613AEA33A356B17F25	3E0245CC414A5D1908DA9539770484805FC9D6CA	1FCD1DF28573CA5DEAE8FF79D672D6176027D5F0D87102EE158B1ECA33BACF9C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000000.bin	data	4D5F5DED77ACE0D93E98AF25B319AFB2	F5D64CD3CD95D93A4D785FB98EB35D24BC482099	D88CA6A6438CA12AC518599ECE15687EE21F79407701CABE8EF6DCE439880723
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000001.bin (copy)	data	CD74ABACE8A00B17BD8107BC5982C21E	D53193CF8A43D766FBFA52976192F44D6B0F79B2	B670BC07C9CB554511180DCF3F6A2C7818E8CE6E67B84784F0EA4D35EC61D516
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000002.bin (copy)	data	AE618485532F3315D676CF4E2AC1289B	128893093C0DCFCC337881A8709DF41998811D9D	66D858F52CF8AE913596359931C63864F039CD49C9167F16F8A68013802E640D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000003.bin (copy)	data	2A8DFEE5CCB63A460E16AA4CA907003D	05C71DB005F3BB7122A9CB371F2B2F40B519A975	A3A8FD70DE1EB7231C487A9F3C27FC4D30EAD7BBCB23CB55D0A4FB7AF4BD8B7E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000004.bin (copy)	data	1234A95F90D4F15B57ADA298F0E98F25	591C0449556615194AA474FBAB073336152C7EA9	36C266C4F6A7A22421BA6FBD4DC7157069665113FB67B8A1D7A11164C7D574D6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000005.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000006.bin (copy)	data	043786707ADCF5C5FA64083D501CB647	E8D894F40590EFA097104499A0160D16297C8DE5	8594219BC51C53AAFB384DE5A2DC654639B660E94FDF6C973DB5D3DDB222DB61
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000007.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000008.bin (copy)	data	26A8988581EC569931C98FD0BD2D9370	FF90F8A8E6B275A76DDF52FA2682F834EF716223	3046B50C60B0F00E12F03B55DAE08C9305D366C856A2A29DB3E4EEE611127728
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000009.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000A.bin (copy)	data	CAAA480B50DAA1DE25A1A40104F984D8	53E4CACA6B2D212B0D9C4AC22541F43D046DA7F1	2911566CA44FFF2F1AB0164A574055D61B78A398EDBF304F2550E3722F3EDDEB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000B.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	47ADB0DF6FDA756920225A099B722322	851946B8C2BD0BB351BAEECA9E5BB6648A87D7CA	EC8CD7250F3D82E900E99114869777EE859EC73EFFABED108815F65742078C3A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000C.bin (copy)	data	A404F5EEA3F5A397069CFDB1124E5AAE	86666701E90F8EFF0803F0B882731926A22C95D4	53A0EED94E58955CA09AA86C0CA39F8621CB7D3023F74A04CC1198D918A80AEE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000D.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000E.bin (copy)	data	D63746770E45DBBDDA8254BAF706B015	EC22895974FBFB26339D8AD6FAC76275E5ED7F90	80A948773EA08F37CB42721968BC8070181F8FA8638E298072F606805CBBAE1A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000F.bin (copy)	data	A7E600951D5A2FE9B2CD4FA379EF76A6	E1ED123A8570EE01FBB7F877D91C7D05050EC73A	D757484B1A6FE4F30294346A7C66FF1C1677373B7010EE06ED62FD2E2CCD2B85
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000G.bin (copy)	data	03814BC353B26376A173EC4C6F21E970	29C7FF767D7F65BEF6E9AFEC57E9A77B2A4E4FB3	80F2A33AB13791E857DE594C06E87367109F00C9C2F72E03942FD4F61208BF9E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000H.bin (copy)	data	CC4743C95FB03682A36F350B6B6FCA79	ADAB1B3B28FCC134BBFA1CFFEFB2ED54D7008CF4	EB62E64201BFD7B63DCB29ED04AFDBA02665651354769FB0BAB526ABF502ED8E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000I.bin (copy)	data	541ACCA11C914132695E016B508F4246	C7C6AEC6605E4E9E820E422BE16EB8C0784E377B	B6E2FAA1108D8A7A643CEDC04B3F01FE27655543D164CC645AA6F474F8F42F75
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000J.bin (copy)	data	8E37831C70BF51778434D2B166EEEF61	3AF58B9A6B5D86C07EA8F40199621AEAEEEF4649	2E718C184063E204FF2B10886F4A4E75E51EDE7DD62DEA015CB552F3AE7002B0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000K.bin (copy)	data	BC8610BC541E9089484E3220C76DEC28	63ED65687F0992163054124A0ECCBA5415FE00FB	6489CFEC97F2D8E6F3594A730442F725D080702C7F155531641E157B36D05BE9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000L.bin (copy)	data	BCC872BFBC08213790296F1F777AFEFD	B2AA084E308ADFBC070A5B3FEE1BF512C7D9CDD9	FF63B093A6C7ED680CCEB1196161BD1F844FAA4433C01154CCE0511F4C365BE6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000M.bin (copy)	data	2BFDBBF25990103AC2D731E32B74C044	B8E70C5A9333E033594518FF832120CD5419C98D	B3D3FA78684EE6D51C0A72F3B38E27C91461707592782B769B8846B6738E927D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000N.bin (copy)	data	B02163F21A0B245AAD9DD1C7EB1B3215	7522E34FA4E7EC7EA80AC3D0A23DA663C808C78F	6860F9373EA0E9223CC506A69C08B2CD2CF5A3EC801F506BE57648E5520E72E1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000O.bin (copy)	data	1F84346EED37C1BD8BB7CAC049F1B5E8	C179BF97136107CFF9A8DB6F3A3CCD6159CAEF86	C07CB554877182F672565336253259A2ABA5AADCB755A2591043A65B692098C3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000P.bin (copy)	data	157B3E9B2E4421F9063C8DF72C23C8E0	5441FEB77FFF3C837B89498FAD05EA88A21431C8	768A4E4FCED3626FA94C51C5D00C4341F75B0DA7497BE9C4D3E0AF608B3AC955
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000Q.bin (copy)	data	43F4096639BD32BEBAD786D5F9EDCF31	B492859388B0FFACA1AB43D784182882ED7D1AE1	EE5C12FE239989FC76FA12223514100A9C741C143A381136D6611A4428154365
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000R.bin (copy)	data	17B4D5032E36C27F7D58AF815EBF3186	C86F8F7CF964385CDEB925CFA39FA4FE63B9D09C	7B8FAD544F8655679C6D93EC57D70BC121FE5494C90AA741FCBA93B9261CA38A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000S.bin (copy)	data	7CBBB6F9087A7401A95194CBD6FBB944	B7466A1D42F2AC0531F609D46CF69150A5EF8D64	B611B88BEA8B42301281D6ECACD4C7DC9B5E6F4B9560F30AB6F1C204F219E84A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000T.bin (copy)	data	2FB9BC4C422FEA5C7C60F94C7F8C44F8	DDB5B93D9BD921AF6E6FA315606177F389166512	6473EDF86F9D87F707CF02F16AFD60FAB72BCF31D6CC9B49B27AA262E46384DA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000U.bin (copy)	data	597F86EE1CF7D4FFC9B2CE67A8A6FFDA	39FF7A61C34222F7927BD3A8AE531B392D0688FE	3D3CAD9CE88C50DC086D03D8122180615DAF342E0CD2E69B4809AC290F7E53D7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000000V.bin (copy)	data	A4EAB37F81D089E00691DB9A37B73DD1	09C6F3418AEE77A1528545B14650E9A3294C0CA5	AFAB3C05DA23178133C82A05C0A574208562738B8E79FF9068791503088DEF41
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000010.bin (copy)	data	3269FD5C9726AAD4CBEB17E04F322F50	7D0DF65A8DFA886E44EE6E7827A311B53EFA0ACE	6A0D7126DE1798082A9EB73F884717DC3EF014C8CF40497A125960AD59B458E6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000011.bin (copy)	data	6A41C5D0F6D4DC2C229861DFF9EA4C02	0CE3BA66E8F10778279CDF811F5AD0B0D0BA4F71	D1102208B4A5572595FA070478FEA21128429D6C13F5D47FEE944587CE8500E7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000012.bin (copy)	data	2308F0EB44ED4B25151BBE2022A96E69	F2DCB2F34CBA7BCF7405482AE13956DB05EA0A4C	C11C6D0C309D26F0AC779E073C12458380E9C1592C5B2C2E454765EE03B3505B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000013.bin (copy)	data	7F17625C237A1EF7A178E74878E99C4C	012F49E9A71781CE08CE49A0FD764C6EAC8F7E4E	043F7A18403AECA14C6359EAE353FA2C0256340A02465EE784E75325BCF395EA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000014.bin (copy)	data	A7140B857DD152B98832046ECBB75BB8	6CB270B34A4619680D7DDE0D765C63FAEA38C014	606B292A3F695E68294A8C4D774F724657EC3B95F5D4CDAE457CF7DDA6DCF893
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000015.bin (copy)	data	7E288DE4DDB2A05F5064705A738FF8CC	A1F6751C3E5C2620563A3185DD61C669C23079D5	FC8F47FB8854CC9547327A8227ED91037618E7F4278CC95C40AF42DFB675FCFF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000016.bin (copy)	data	A35B580DB94059BA1A688139B3B6AA21	A970E90659A555E2181C322613F0E2BB375D81E8	77FA2141131E88DB2FB5128C8C076715C79DF06CD28470DA665E28B9CDB82EA2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000017.bin (copy)	data	CFDB84ADE94E69A631846DE2BA9A25F0	8B6B9DF17C9A9112AECB3AF91330C4CA56E3A1EA	91D0BAB2FF8F223361575E9C7A40C6AC072E3457067C78AE17581F723189F30E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000018.bin (copy)	data	63F4611758F3A97107A1F0BAE70B808F	11553FC1813257F70C3E41356B0CD56B4B475BF5	1CDA4499E06F8AE41111692B1ECE3E1A15243F734F985B8E9F2875EA946CEA60
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000019.bin (copy)	data	F1BB23E94B37F8EA805FB343E0057363	8CCE7C5B371E2F410A595CBB5D161B0DE9F9148D	3CB2F9D073DA44A5298E0FDEFF0D6E8A697AA60427C902C9D8BCBBC09A06C996
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001A.bin (copy)	data	A40380FFA70406086F711CCC29F9B333	A6CF9BBC6BC6167119F8A45BB7A2AC50FC8FF6CD	EFE35402B525D61460CF94C841881978D45F3416BB5D5971576715BCCA70E796
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001B.bin (copy)	data	6C6C01D6EB2D49CADA946DC67C88E51D	6EB0954C7F8201790B98D66BD9D4662127E95447	06CCBE4AC36A33F37603C6B3F911EA7111A04CFAE344801B5F03483C694973C3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001C.bin (copy)	data	639FCD7EC099B1A1038457BAE9799BB4	8DE1B542F0AF57F14BA28DC231F92B7FCE5CEF07	6881B428C2EAC87543A31208D59BE4C38B6D152273ACABF437C80809DDFFA85A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001D.bin (copy)	data	ACFE67EF3C1FC877D78037060728BCA2	4F9A5CCD67BD0354C8B437F219757DD3821634B0	D828A16A99ECE3446E90BCDC3194BDC865B43EFA9A2BDF8796C7D945F6EE0A0E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001E.bin (copy)	data	C2E81F6B0C80955C8E987538BA4524A0	74CE23FC59DB5E86A337274E620CB6680DD66061	B0F2917581FEACA7477ACC46BAC2B010D86AA338C7662019F90C7166CFD03228
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001F.bin (copy)	data	405F6AF464E9C568CB3ABB7ABB398077	BA6D3A5A4C686E6D28DF6929353A4DAAE7F856B4	DEF272BFC8129A08FF77EBB30F089F9523711646DDBE015A09D657EA5AFAD1B9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001G.bin (copy)	data	CB06FE5BAA6316015EA7FEA99CFF0B94	E889ADFD561EDAA1F3726EC0722F90E97A0B2B2F	09B55DF64D041100D7621DEAF9438B470E9D121CD85E1AD040DAB043B38F496B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001H.bin (copy)	data	A8F75B406D3B0DA479152A88A448C25F	9466BBC2053C6CB1B25237DE0862050CEC697022	80E8F6ECA8CBE72CB211F8B7D85405975E344FCF37B9208181581BA2D99353DE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001I.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001J.bin (copy)	data	EE91B75E781F90AF1A347CEE65AAD2F4	B83329AC39B8EF129B4E9FE39996032CECC23403	FFFC5D9BE9D195C40E8730843123507CD792ADD178AF9B0DCA2F7D28FCE6C878
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001K.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001L.bin (copy)	data	6B3E695B299CFB7C8585B97E9BC18031	AA9251B9278D9586503073D07D26AFF2EE0CB085	1492021FA1E636770608D4694DDA1955C21D7747DD9A635BF0DC30B705C02754
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001M.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001N.bin (copy)	data	E58784B3A02896A59721594B8ED75998	D08EA8778948FE809B6602E9B6BC8721022DDFD5	43876DCEAAEE1C911DDFFB9C6D3A18E0A59511FA7962D38261739FF7622BF890
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001O.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001P.bin (copy)	data	3DB4D1ED369E633159BD80171C2652EC	5400DA6B6863333FCD33030751BB921351D3F144	ED5A2EB5322AFF32BB735088C3887A4DDDD594AF570AF49A3CA85A3D9C347406
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001Q.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001R.bin (copy)	data	68E7382459B27D5309EE1547899322C9	FA47626BDC2EEC4F69D5514E317AF44D32A319B2	98573E262F090D6EDB71CAE8E0A2E19E371481409FBD4DD2467828930DA6D03B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001S.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001T.bin (copy)	data	30586F9DA5CB0EC318467A5426AA37CF	7A891E4CDDC91DB6875ED1204EC5CC8BC795C7C6	2FF51BC513160D4203E2DCBE050583CC6F0C96599DC78F49C74BDCFEC4D28B50
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001U.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000001V.bin (copy)	data	2B58FBB137EEEF0A02FE1400008362C6	C9AA18A742854F11246B1EF03B2BE2D593597E0D	4E83287E646351ABD8D24C1683D1378DCCEE736FC1492A7D2E752BC5D11DCDA6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000020.bin (copy)	data	F720ECA7023972821E131031C2556254	3811144252E7AF10409E0C293983AC629F9567C1	D281C7795D696F8352EEA9B134685C37BCAFAB7F2199DA8A7A40D1EBA51A1D03
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000021.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 814x105, components 3	4BCCCDBB4273ECEBE216C84930A8D0B2	FFBF617787E27BC94D9BAF89F2FE34A2BD42794B	474F9A8C25D5E21192315397EA995B1E11E2C1608157C6E0277688091BFD136A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000022.bin (copy)	data	73E2E15C213B5CF391B3791B87F988CD	5219341774B3D4808289EA0ED04D5E1B57C8ED2B	98BDC30046562FB4F9A7154307ED49B9E98E54B9ED0546412E16E8E7983D1555
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000023.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 728x77, components 3	B23DE98D5B4AFC269ED7EBFDDECE9716	10AF507A8079293A9AE0E3B96CF63A949B4588AA	646586CB71742A2369A529876B41AF6A472C35CC508D1AE5D8395D55784814F2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000024.bin (copy)	data	E2AA2A66BEB5D77987920A5A5E2CE959	727C58FC5ED85DE1B12B4DF63981D484229C3665	5B746E0EC8C9A8C3342449BE5ED3B60715B7750C003BF7FA31C1D2BB308701D4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000025.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 69x630, components 3	02775A1E41CF53AC771D820003903913	2951A94A05ECF65E86D44C3C663B9B44BAD2BC9D	83245F217DEAE4A4143B565E13C045DBB32A9063E8C6B2E43BB15CD76C5F9219
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000026.bin (copy)	data	A0CA11433E4B5E166ECAC36CD6F41207	03E442E3123872A0A2F5F0C9F088BF4E5A1CE490	4469266CD0D54F5462996C88BDCB82B14F31CF2A8ADCF75CA0C6F889853224EE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000027.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 105x441, components 3	09A7AE94AA8E517298A9618A13D6E0E2	FA5181A7414BA32F816BF0C4278EC20C615E8B1A	3C68C7EE798E62A4A99C740153F3980D7DF029605C843410942C7F85E794823B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000028.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 76x97, components 3	14105A831FE32590E52C2E2E41879624	078FA63FC7DB5830E9059DF02D56882240429D90	D0A3A1C3CD63C4023FE5716CBE2C211307D0E277E444D9EF76C7FC097A845FD4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000029.bin (copy)	data	2494993B1F5660C6E2212F1868EF8BDF	849A4E86C926ECF8D8E5D2E2D5B75736EE757A1A	1D0C9E4CE500F69E1D0C543678FE84E09F65C11FF67D5BA654BD22937A146C30
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002A.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 95x498, components 3	D9BD80D40B458EDB2A318F639561579A	83BA01519F3C7C1525C2EA4C2D9B40F28B2F2E5E	509A6945FACFB3DDC7BE6EE8B82797AD0C72DB5755486EE878125A959CC09B59
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002B.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 700x114, components 3	DB8A181E3F0EAD4A9472099E42ED6BE3	92096AF05CC6167B1AA816811A1160B809393FA2	E9746B4E9AE9CE7B3B0068779DB3E113E2DFC9880F25373D745D0E700E69A906
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002C.bin (copy)	data	4916704F560A1AD41CF2008A0C266171	67D89A8677D783A105549C0D87D2EBC6893EECED	4355AB5C767D32DF4CCC1091537E3C5072B0A78C6F0FBE16FEC04A720620E4EE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002D.bin (copy)	PNG image data, 813 x 99, 8-bit/color RGBA, non-interlaced	EA45266A770EEA27A24A5BB3BE688B14	9F0B23B3C8EBA4FC3C521E875EF876FBE018F3C8	EDAD0F03E6FF99FEF9EF8E8B834CE74F26CD23C5F8C067F5CEE66F304181E64D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002E.bin (copy)	data	C4EC9A9490DD7E7A2AE8B8D58B0DA8C7	4C6FC73BC85175FCC18BA387189A77EC6B8AD6A6	5EDA3AC7995A257AD8F562F8B2CA45D3D50445B7EF9C016756BEF82DDB9B72F0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002F.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 780x107, components 3	7C7D9922101488124D2E4666709198AC	00CC44A1B84D4D94A0ACE8834491EB5F65D04619	20016E5FA1A32DCE5AF4E92872597E36432185A7BB2E61C91F362BD68484529B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002G.bin (copy)	data	BBC00BDD57A605C2412CAE48DEEA4C6E	327B36B2C2B1E7B2DAF9E113EFA975AE921BE8B3	17F2888710FF39AC37BD8F6568411AB05C01F4EEA10D3E072AB4190BFA651FA1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002H.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 613x144, components 3	DF99CAAAB9A7DE97B63343E60A699AB6	B84334135CFB73BC6EF55F85926770D5AC6DFEA8	74C131777E7C437FD654427417097BC01B0813BA8E1E50E4B937BD50A1BEBCDB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002I.bin (copy)	data	EC3767319F9D57D508F89F5C4060EDF2	D8C5577208836D7DE7D3209B83E22A71936F6468	BB1CB7ADE879C93840A81683485FA8BB188DD708BC03C950C7E2179BCC8C52AC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002J.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 276x139, components 3	5D6C1F361BC04403555BE945E28E53FC	00C254F7B3BC0289590C2BBDBB39C8EC2E2B2821	131D637CDC5D0B094FB9FAD17F4D2A1ACE0D03613588155AACAA2D1CB4E16DA9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002K.bin (copy)	data	0D52C8452DCF3C3A64D563D234FE3F36	0CDDB260D9E02168319911CC880A9698943A5A66	8C977A364B325CFD9B7CCCE1AB7A74DD0A1AB71170E77EB29633A72676393927
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002L.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 814x45, components 3	943371B39CA847674998535110462220	5CA79B7BD7E0E93271463FAEF3280F1644CBA073	9C552717E8D5079BBB226948641FF13532DF3D7BE434C6CE545F1692FA57D45A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002M.bin (copy)	data	A0A59583329CA502120AE41A75759B70	469E7A6720AB1A5E6ABB6ECAC2B50B9F5CB59068	49FF61B20CDEACC717CEF041B09A0F66CE521F3A857025AB3BD7F842F2124490
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002N.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 262x277, components 3	8A5444524F467A45A5A10245F89C855A	ACE68D567B02B68275E0345C86DB1139C0EC1386	7D2B01F17354D9237A6AB99D5B9AFDF0E1CC43687125848B0C2DEDFB44CE3843
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002O.bin (copy)	data	D93650520EB62C8B8FE63E2F56368D55	1EDD938FDB159FC0AF7056C9A28F04A7A9EAC0CF	DDD0544A48DA3EF9AE1F8ADA4C893396EB5C02584837EC59F1B5D74C0C223C89
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002P.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 70x626, components 3	EE9E2DF458733B61333E8A82F7A2613D	A86704C969F51B86D6A05ED51C6C60214ED9FA89	BE4F0E6C89FCE91B9EBD2623567F7DFC259E0E3C77C9158742B8F64B724DF673
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002Q.bin (copy)	data	46BE636A1960F89B8451F9ADB199233B	B91864D16825695C135F25D7B9B44FA5DCB62C2B	43860D9DD5FE2910B1AA9A04A18F85E7623229D3AAA81B32032A880B1C350E9B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002R.bin (copy)	PNG image data, 177 x 123, 8-bit/color RGBA, non-interlaced	8B48DA9F89264D14B83FF9969F869577	E1BD58E2D80FEEF56DC514F3F0B3AB9669F22F95	62AD3C277E54F03F1ADB44062407346F789E63859B7AFABFD64BE6AF5E9F66EC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002S.bin (copy)	data	74CDB4A226A76284087A0EAE4D9BDD16	67185324FF23359C9F501307119934FFD6FAC262	EAA58CDF4378FCDECD877E4039957483D3F210B78DBCBA6019C732EA02568904
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002T.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 17x608, components 3	4FC8500BD304AD127AF4B5E269DFF59B	9A5E3432358A0FCDECE86AEB967319B93A65D14A	B4DAA90D5A53FCBC85119050B5B76962443C4DD18D7F42CDC6D4E0AD8EFAD872
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002U.bin (copy)	data	BB382ECC719B1DFB051F4B9746D2C965	7090152766FF94FDB7E13565D233CBB6D0884046	4D3A73C3ACCCBDECDB8620AFD309E187A5EA18539CA9D12C0726910F5AD3CDB7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000002V.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 357x69, components 3	8470F9A96B6C6CAD9EE60961E96D19B2	AFE1F01FFA4E4CB06B1D770C9C59DA75B434D1AC	2DF453410796AEC7B9EFEC00059B6CE64BCF67313A95AE458BA600EA5DE14811
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000030.bin (copy)	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 14x341, components 3	A994063FF2ABEB78917C5382B2F5FA8C	BD5C4D816B04A2B6596DFE38DB01228F553FACCC	D72900E8DA72D1A7F3729971AA558E1E9B6E9CF9A0D51E83852E567256DBBFEF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000031.bin (copy)	data	291B1B45BAC4EF4B8B77D1180C125D15	6A4FB9333B5417BA4195A5BA1F9E00DC7F086AA1	FE6EFDEF395AB299F77937D9374FF6FCC3429885EB91E83494F5D587D6E31A0F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000032.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:15:20], progressive, precision 8, 604x784, components 3	CC087700C07D674D69AFDFDA0FA9825C	F11113DF69DACDB255C6CBCFB29C1D1CCE40B346	A7FA7F092EFF43030A56342C39A765F8D5CC48C7DB815DDFC8C1E5EC40117FAE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000033.bin (copy)	data	62F236F25C419D8494D57D4CB52B6132	7B5F918F344FBED8273EE576BD0E74C5F72EB909	B6DD57F08C9763067828BC0BA0EDD6C65C8C43D21EA44163F7B328C8CCB913BB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000034.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:13:06], progressive, precision 8, 570x779, components 3	737E96E41D79D3BDACE7AB4F8CBF6274	E6202A41A4F86B27D9EBCAEF7670B16C0ED67CF2	7966F3D8A2D61ECB49A35E163781858E052C0B122A18A1238AFE27B57E2850E8
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000035.bin (copy)	data	F9AC748F90194F2F3E8EBF1E1FA38871	E930773D1055F816B0B78989533593E402AEDD9F	B657FDBF04224964ADF2FDA2EE10DBD53E92A4CD0B846EA1F79F5DFEA776248B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000036.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	CB84C108A76C2AFFCAC2551A3C1EAD56	8BB7C2A12B056C1ED12EBBAE5BC9F60CCE880FFE	139BB0E79F89C3DDEF79B1716A5FBAB4C07DF5785FB3CDF6B4EEDDBF6C078452
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000037.bin (copy)	data	EB054B2D0D2BFFB55195F4F20F2F8620	75156D546E4CF42ED0F3880DB07828F15142E1A3	6A18D1B6CBFE556CCF02B110187D3ECDC88BFA3E968D8B6200EEC01E492871B5
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000038.bin (copy)	PNG image data, 40 x 623, 8-bit colormap, non-interlaced	07DB3F43DE7C1392C67802E74707DAA6	C173ADB1999065C5E1E6DBEF934B4D4D7AF0CC23	51E05999A1C9F17DF28CB474E57DD8E64BDAB824874A532C20A23766A01F8967
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000039.bin (copy)	data	16BB67D7BE3B19473ECE440FD9C88532	AB06FCB91DDD074A8E435A50A85261BF86D32D1E	D787A11BE86BEBAA32CE16E9C390146BEC5FAF0762FC3417D471002823F1041E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003A.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	B1DDD365D87605F96D72042CB56572F6	ADF71DAD1A62B8A58A657C2EDBDD665A19EB846B	06E09DE80C3F32254DA4FE6B2CBAD7C05EF144DD54B8C65745E195BBF7317A2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003B.bin (copy)	data	DD0F2942B8B9EB11C71CB79C5CD1A96D	097F4BE688FC4BB197CB2CC5F1C2FA46EDEB09F3	D8D22DFD4D416AA6728E9B0EFD6A2DE7709C4BBE8576F6B5FFE0B5EEA4AEB357
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003C.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:10:32], progressive, precision 8, 594x773, components 3	C594A4AA7234EF91E6C2714CFE1410F1	C0F720D4CE3196852814D0B7347F0CAA0C6FD526	10C833E47BE1C8496F949A6B059C2D79212A4DD66BDE62116EA337FA4FE0B654
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003D.bin (copy)	data	70EA99FA7F3801C4FD4C8A1D51C260E6	0CEBD018236140F12979910AEF26368F395EBE14	B5B392377AC8DA15B767F7C8B0441C95DCA604FBE46A5B02A757A2A2D142F1C1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003E.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:12:29], progressive, precision 8, 598x766, components 3	EC7811912ACA47F6AEB912469761D70D	C759BC2D908705D599B03BDB366C951B11F99A4E	FBB4573E3BEE1B337077691BEBAE15D6FAC52432405D31396D526D7694A8283D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003F.bin (copy)	data	C509AF2BDDD2C12E7B1B34C29A552A09	5227CCD2F830E5ABEEB6452D9394F3AE4D644197	62E721F1EF19C805082886ED1364D1E140466A274D6CD5AFEC145E8E2912660B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003G.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003H.bin (copy)	data	FF145F472F395E48B24A8FBC1F625388	52515B8AE77193DA60E53F52265C2B85C25CAF4C	F428092B051314ECEA44D853615CE027ABEC6C410224F819FB2880338628AC8A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003I.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7A450E086AD14BA7D89BA5DB3D3AE6C7	E7AEAFCFCE476390E18C19456BDF6529D863D518	BDD997068701ED3A00A224EB694B003C01AC69B857FE7B4147D6C34875B1632B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003J.bin (copy)	data	4AF451C6F66F2A47E92146C373ABDED3	75FE1125FC06B091CD9BB565A3A3D3FFF3D05AAF	DB063673BC8306B5994FBD0CBD2692B1616C3B1150CC31B5D5E644D4194ADB32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003K.bin (copy)	PNG image data, 60 x 336, 4-bit colormap, non-interlaced	78762C169F8B104CB57DFF5A1669D2DF	9638B71B584CD636834016A635ABF8D9C0887711	E64FDCD0B108737D8B8F7B677029F924031D6BBAA50585D9C3DEF7C7E92ECAF2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003L.bin (copy)	data	0B4B6156F1C6E70BFF16967DF750A489	D40B24B0EC5AC175C1F866895752F48E831208DE	579693026F4617F426D83C3487FAB570B8F6DC8700A54E631AA1A345CD693CB8
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003M.bin (copy)	PNG image data, 40 x 617, 8-bit colormap, non-interlaced	3E675D61F588462FB452342B14BCF9C0	86B62019BC3C5BE48B654256B5D10293FC8C842A	639EADAD468B6B32B9124B1F4395A8DA3027FF7258D102173BA070AE2ED541AE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003N.bin (copy)	data	5A0A5AFED347C8588B35FBF5E31D959C	13E2F5E41225B0560E00DD6A6B0636D47E821292	45417F7695EBD804FDABF111CBC8A11DE32F837B6A12CD00D0D6C69BCB4DDF28
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003O.bin (copy)	PNG image data, 50 x 600, 8-bit colormap, non-interlaced	2494381A1ACDC83843B912CFCDE5643B	98F9D1CC140076D1AE5A9EA19F47658FD5DF0D66	5EEBE803E434A845D19BC600DF3C75E98BB69BD0DE473CEEC410D1B3A9154E28
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003P.bin (copy)	data	0F7C8BA86FD4F34F870D318ACEAB50C6	D720177286C438FB12AA5E2185AA7D8FF28E5239	1AEB53D40793EEB785962BB60FEB3B870E80D7E2CE76A1DFFDB56493EFE32B77
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003Q.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4A2472AC2A9434E35701362D1C56EDDF	16FA2EA2D2808D75445896E03B67A93000EEDDD8	505F731CB7707EFAB2EB06685B392DC7E59265A40B55AAE43E5DC15C0A86CBA4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003R.bin (copy)	data	F3A9E61722F792676A395D75856E9721	7CD5D4D3DE9EE35548BCACBFCAEF2E60827E1C7D	F35C60DFD261555D65145BA7E25E90EA6029A69E2B65B3E89D2BE06530C467AD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003S.bin (copy)	PNG image data, 77 x 627, 8-bit colormap, non-interlaced	FA38AFA965141EA3F17863EE8DCCDE61	2B4611E651AF7549C1AA73932B1136B561A7602F	E1CB1A0EC9BE62D5445C73AA84DF38234002A7E164EE830C9DF24997802CB5D2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003T.bin (copy)	data	E39184E79279CE86E2431976CD01A86C	80A0E9C9D96B0BCBF4085AA6F1B7490B2E094C97	FF87050499774BF00166CC7167FB681065D1A3D6322605F7A7190E004AB13718
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003U.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000003V.bin (copy)	data	1B61D48138F80FD68A7EEC7FD2C55F6C	999BAE3ECBA68F5A5D08A006AEBBB0CB925333A3	318D41C4118796A20D27167542E882093B05E2D43E7CC47D20B0F026715D48DC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000040.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	39FF3ACAE544EAC172B1269F825B9E9F	2D40DE8D90BD21D56314D3F99CEF4FBAE3712C0F	70475431CCA3C91A4EFA3B8F04864371D2D3A45696674A1A0562FE9CD8DB287C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000041.bin (copy)	data	79C4B1B2108493A4515B7052AE6274C3	28CFD22C9AB3AA4B3EBE183AB8200393D9742A96	0D1BD2C1028183141766A1B2A2DA68FACBED38D0B9C513374A2C410FDCB633B3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000042.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000043.bin (copy)	data	9EE2A4539F94E91690D9ABF5321C8E49	5135AEB2DECE51F443A7F1BCE7A5B1F2DA092C5D	8962D2C5A9801FF6563E8EB52A89EF3CDBFC54874F47DC6D0E1565E41139D38E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000044.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000045.bin (copy)	data	7E09108B9C5D12961891CD751006E80A	FC3126FDD60A6B333F7C8BD1575ED727FDFECABF	F71081516D76472626D42572B2E58CA62AB868DDF50E9B61F2B416139D5FA0DA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000046.bin (copy)	PNG image data, 176 x 513, 8-bit colormap, non-interlaced	8E9AB9C28B155A66BC5C0DA5E2A4EFB5	972E61F162D48F1CEE21963ECBB2FE439105DB55	B243A24FA13BC8523450E22F408F9EFF15301C938F8CA52A57018B58CE6785DE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000047.bin (copy)	data	B2E5E9BAD6473457E2AD98BA7164B76D	9CEAB16752DFFF7227D8A7F054F58527C0F52B0D	E5A2CC81AFA7862FC26F1A13D3F56C61502A65A8EBDD4F8D4A0465601B0EE8BA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000048.bin (copy)	PNG image data, 40 x 650, 8-bit colormap, non-interlaced	DD876AA103BEC3AC83C769D768AD39FB	1833603AA9B6A7E53F9AD8A336F96CCE33088234	1262DD23AD54E935CFA10FEB1BE56648E43BEF1116696CA71D87E6E033B1CA7D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000049.bin (copy)	data	87D951B5DA071E4B93F2D96FA425BAB4	9006EAA4ED21544DAA5787F119E63BF7D5A6082B	BAE789F90A07066FC5C9C53E6D9627EF00AAAD0CADF2D9B327B9C520C8882A8A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004A.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:27:10], progressive, precision 8, 102x792, components 3	1122BF4C2A42B4FA7F29D3C94954A7C9	3750077A830FE21735A43ABD35C63BA9A4D4B0DE	423B0DD1A93B391D15B1DC8D8757C3BF5725FF2E7A59E6E3140033E2876B67F6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004B.bin (copy)	data	B583A5806E39127AE7211C1B7E69C308	F16F1459A4D298FF4C1463AA4FE70CE11D45094E	B627B0305D60C5D395CDB094C8064DA37A7B0DC0C380CD8F53F5CBEDFBB6B4F6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004C.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004D.bin (copy)	data	608C2F64A6CBDD33BE2BBECFABC0ADDC	13E829D9B24EFF3D2AD8273E178B071B393A5ACD	ED88B7B61C0D8CF987CF1C2F120AA717A26B56128696D3AEAE1E87742B1B40DF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004E.bin (copy)	PNG image data, 50 x 556, 8-bit colormap, non-interlaced	B7F74C18002A81A578A4EE60C407A8D3	70A7D4BB1B3ADF4397D168AD0D81B286F88EBDE0	95F59A0433050180D4C0E8858B83363D51BEA6752A8B7CA516A8677854D8F5B6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004F.bin (copy)	data	0D42643D90CED77D5CEB532C2455748D	38874D4FC8B1646CA5AE083B9CE6D135B66563D0	6E228A2011A9C4ADFDAFEBAB50B0E93A86817ECFCF18DB7511E08B43CDA8B695
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004G.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	E9C52A7381075E4EBC59296F96C79399	BE295AD24D46E2420D7163642B658BF3234A27EA	D56CEFE9EE2FAE72E31BDBA7DD2AA4426EA22E3CEB22EF68C8F63F9F24D5A8BC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004H.bin (copy)	data	0B803F5BC393BE2C49C92F7A9B65A433	EB4F8C563E19F90C21C6AB56DFEE58BEE35A4504	B2403BF69026DFE1C2DB31E999741DCF6E590CADF10B7B7DE44013A84B8F1ACA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004I.bin (copy)	PNG image data, 171 x 552, 8-bit colormap, non-interlaced	E1B57A8851177DD25DC05B50B904656A	96D2E31A325322F2720722973814D2CAED23D546	2035407A0540E1C4F7934DB08BA4ADD750FCB9A62863DDD9553E7871C81A99E3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004J.bin (copy)	data	0F089D9B2C86203BF2D8D2690DC4D161	1CB8DBE456070E6C6F8D02AAB652A40BA1A7CC05	390EF5509CCDCC35F623DB8C7C49573DFC6C9E1B0301B8C947A7257017A75729
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004K.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:11:38], progressive, precision 8, 577x757, components 3	37EED97290E8ECB46A576C84F0810568	18D9FACB4CFA3CBF63B882CABCF30B203EDF4126	140DD943D0F0CFE6AAA98470B7D1A7CB62CA02CB1D8F522DD2AC77433232EF41
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004L.bin (copy)	data	5E070D77BE0D8C3F021D17963A4B7480	B9D22A61110BCC581F6257F0E33420DB21727007	A575666E4891FFEAE6E8149A1B6287E555F383372C791026B8F27A3CF20D4904
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004M.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:26:15], progressive, precision 8, 216x792, components 3	864EEA0336F8628AE4A1ED46D4406807	CFCD7A751DFDBE52A20C03EE0C60FDFFA7A45B93	7CE10D1EA660D2F9CF8B704F3FAB2966A4CE2627D9858D32C75D857095012098
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004N.bin (copy)	data	85108A9FD9CC04F1ED945CB0BDD15336	63B1119C9D57150C18AAF912D720A7958C4B5090	BACA156F70DEE839D449C66C627F052BAF849EB47C9A32ED32794D38E6C2494A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004O.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:09:29], progressive, precision 8, 609x675, components 3	B4F0A040890EE6F61EF8D9E094893C9C	303BCBA1D777B03BFD99CC01A48E0BB493C93E04	1F81DDE3B42F23F0666D92EBF14D62893B31B39D72C07AEE070EAE28C2E6980E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004P.bin (copy)	data	125E5DF7977D71FE576EFEDAA984633A	ADBE8192EE01D282F4FC65FA13AA51D4E8CAA146	EDE104827343E96648AB5B6F20F542FAFDEFB2289D783D66BDB7128D90A03584
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004Q.bin (copy)	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004R.bin (copy)	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004S.bin (copy)	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004T.bin (copy)	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004U.bin (copy)	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000004V.bin (copy)	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000050.bin (copy)	data	FC3A35B2181AC3C83A57128054E9005B	2A828846CE11ED421992D9DD2D69A5C165FFC00E	EDA2138CEBACE9B93925D87F48305109859909A81A5D15019B47DA6CE748F782
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000051.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000052.bin (copy)	data	F29057E6DF196C548A3FDC6F3AA25805	F4D3EC011270314B63E87E55E20376F48D4A057B	162A4778CCAA084483E28CDE3E500A6550D62A4C40AED08D7AAF949925A0AFE9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000053.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000054.bin (copy)	data	0ABB047A84348BEB6432C844A0C81D6C	57CCC4737067C98BBBE3805C0C7DF077E0E67631	AFB23A0ADF33C2DF08DF164AAEF4A36157ACD1F22AA901BD995CA891728666E2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000055.bin (copy)	PNG image data, 50 x 500, 8-bit colormap, non-interlaced	CA7D2BECCBC3741D73453DCF21D846E0	E34B7788498E33FFF0CFB00125E6BA9E090F6CED	E9EAD0BFC09D32CB366010CDFEDE1C432A2D1D550CB7332BADAC1BEE9482BC86
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000056.bin (copy)	data	B851198710CDFAD1C6C5992CA364A169	926CCC510AAAAF744A53F97F58B105FDA046E1C0	D48AAA756A73E50D315DB8002F7E026AFFE17D6E8DFD5CA1CBDB458A945B8131
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000057.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000058.bin (copy)	data	398D531EFF90B275502005C15A7E0472	AAB06783FC7504281118E515AB2E28DD9338EED8	37B5C382CFBE3C35B568181B88781C41E96D8C5FA90C73EB81EDEE6F1D31F139
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000059.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005A.bin (copy)	data	EECB0C305DCD7F2B62B6F433D9A45939	0FB8DCD57C7503B5F587E45D0A8CC35A9BDE8DEB	FB53B1FEBF0559D4C75EEE0056A8348E9CEC265F3C9B58339315FD1C87373BB4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005B.bin (copy)	Windows Enhanced Metafile (EMF) image data version 0x10000	ACF4A9F470281F475EA45E113E9FB009	B20698DDA5E5AFDD86BB359A6578C9860D5DF71F	5DC2367A80588A7518DB5014122510BF0FD784711015EF83A8718336584F82D0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005C.bin (copy)	PNG image data, 3005 x 184, 8-bit/color RGBA, non-interlaced	5C859FF69B3A271A9AAB08DFA21E8894	3156302A7450ADFF4D1B6EC893E955D3764D4DD4	B4A8E9A67EE0B897615AC4CCE388FFC175AB92D9E192E6875C79A4E7C1B5BB6E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005D.bin (copy)	data	5A204ABD5B1F871D08FE7520B551C347	7308E389CD51DF67837B03CC4930DF28D29A0B30	F71C0266BD89E6E0069E6CAA4F705792EA18E5C7BEE9D431BD6C384ED276F61C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005E.bin (copy)	PNG image data, 39 x 600, 8-bit colormap, non-interlaced	F6C596F505504044DF1E36BA5DA3F09B	BCF17EC408899B822492B47E307DE638CC792447	EDBB86F160050FBF1F9860276802BAE292DBFD0BC98E3EA90D43D981E9F0C54A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005F.bin (copy)	data	C4BEC77F5568FD0D9E39461E06E19B0E	75372196984B77682C16A0CF47804F88F23C2E05	C0D50A75DE00F43F86E04607EB8E4638EF6D7A44ACBAAD1AFF8BF04E5AFAA0DB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005G.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005H.bin (copy)	data	80E60DA4E661CE230DA24F76CDFF17A2	5A1F177BEC613B839C3E0DC74311E1C2AF8362A1	6E0D02B20209F01E6D9AA7D31D4B9EAE33C7EE7013CB3AA00FCEC6474B084547
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005I.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:44:07], progressive, precision 8, 611x163, components 3	9C205C8D770516C5AA70D31B2CA00AF3	9A1002F0CF7F92F1BE2BB25BAD61CEBFAC282482	E111F96490755C7D71E87C88ACAEA38AFE55BB865B1A14A83C5BD239648D5E2C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005J.bin (copy)	data	6A7465DADEDFEF4EE7AF09A5D7B26905	41432D02B5360E4A775713238C2E1201BC1BD7FA	C68FD9E74A9B38E95F0FDF6C7A8436067451FEEEDC97F1124329E0FB54AC1B3C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005K.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005L.bin (copy)	data	F2199A233AA75FF8271E1A1FBD643A1B	35D353733360164CE142323B32044ECECECB848B	72C91F78CA32A4363268A73C1554823FB20E528C6111F7858DE75BFCA75DE214
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005M.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	D58C51D2CF586A5E14A9EC8529C3B0A8	F4811A353797C29B1E3F5A61B125C46E1534D587	F927C7825851974A2149868146970706523A49165133CEE6027A43E8C9ABDF27
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005N.bin (copy)	data	45E63B9E8D167C461B9412B159D4DD1E	B1E9C78090EC3FA895DD0CC1A3A974DB9C8457FD	82C9AADB5D8DB95B175E7CABF341BCA1C1E48075C16E66388D9355AEF3C80D57
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005O.bin (copy)	PNG image data, 39 x 579, 8-bit colormap, non-interlaced	E96BE30D892A5412CF262FEE652921CA	8190A0BFE21D04BC6F3A406E91B87CA69C03A2DE	0E31DA4DFCFF4A36C64C1CE940362D2309769F36369E4C43C317D5F2FA15658E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005P.bin (copy)	data	4FEB590A217F6FDA31AD6ACA98EEE828	3774767C6B1274983F00AF5E5B21813199F933FC	D4BF7C046EBEF97FA5247A9B4E8509653E468D134C0A087ED08F7E62B8D5A551
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005Q.bin (copy)	PNG image data, 30 x 700, 8-bit colormap, non-interlaced	0BA36A74DFBF411FAB348404CCEC3348	4C619790E517416E178161028987DF1CD3B871CC	2E7AAF26BEC32148B96442E8FFF1BD2CEF2D72630969F23B9A2ABEDB6CFEC93B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005R.bin (copy)	data	885FCFC8C91F0AFF0A0991E764FCF479	3C18FD0C1BC469F0A75976ACD5BFDDF20460C2EB	55A4CD0A95073B6FA88C0231DCDC9BA235EC133E0B57CAA5EE8D19E7BA3776DD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005S.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	177DD42CA99CAA2CCBF2974221680334	35FD86B3DD082A6D4930C67BC0E05D3B5817465A	525A857D0EDA855A64D3619DF58B1C2D013A73E60FA0D49B155ECFCB2C134C7C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005T.bin (copy)	data	3E0039E45E5DA1D1CD13536353EB0F76	948F80B69C4AB7CF17B32BF89BD408D18DFDBEAC	116143FEAB05B3527E99A93E72D427B1ACC54CF5A2A46AC80F244CA0E57D584C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005U.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	1271B1905D18A40D79A5B9DB27EE97EA	9618608FBD7342DE6C71220A36C3F4995BA9C13E	5B321A4D81BD499B289B1755F6450A42047C494DFBC112DBD56DA4CED2C15C1A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000005V.bin (copy)	data	E3C64CAD23DA542C49AF8D0F85F41380	DA084F73BC668967DE6A1461D3D2CBFFC26899BD	E732C25698F99F943F0C35E0A1D5DEE8437114E98A28A752A3B90A98A06D2EF1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000060.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000061.bin (copy)	data	E1049B4E36636BA37EA4565EAFABFBB3	04D6F6F7DF6C6F6B68148A0B77FEF117BE8440D7	BCCE8CB66D31FB92CEE343B628CB33B34270C654F1B7764012015B9470C9E525
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000062.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000063.bin (copy)	data	CEECDFAD2F471D38B9906F0BB7D5DE00	4988E7E52A5CBC1D156850AF568A47FEB23AEC37	5C058C43D01089DDC3200EDDCA53B58B32752CD9C093788518957B875E5BACF3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000064.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FEE4785DF76E93A9DC2F4501CBAEAE12	8FB4527BDE05EF208FCDB168098A07707C27501F	F091DED5E283AF6848670A3172E7C43C6099875D39B3FC69C2BDBA914F609602
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000065.bin (copy)	data	B18F94B5BF7BA2446E708E2190129668	AC6696AB85238F5B17358E4D9C8A893AEC2FD503	171AE3E1E857AD01267310FADB6C12B65D4FA2DB9530D4BC2772B7CCF7CF5F4C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000066.bin (copy)	PNG image data, 85 x 470, 8-bit colormap, non-interlaced	DDC3CC30794277500EFE4BC6667EC123	EFC9642C1F95B5FC38764476AE481649C016FA0C	7F5B660A1A0BF46C75AAF19B4F77A0E086DE003EC03AFC1F58D871D55AA5BA9E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000067.bin (copy)	data	4738D4AE44B152AAAFA52752A06EB16F	CFFC35AACFD3AA0173330E2ECAB8DBD3C4CB0B45	566FB4D6D3189FDBE61E1BA3EC867E474AA71E92E9E99A23AEECBA502298EC0B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000068.bin (copy)	PNG image data, 88 x 574, 8-bit colormap, non-interlaced	1BDAD9B3B6DE549162F9567697389E1C	5D9C09159F07A3A9BDCC6C4B9BD9CB72D0184E6F	0908A4CFA23F93011176D47F45843E9CA2973030421996E8E27484781F54B0EC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\00000069.bin (copy)	data	6D32A3CF9F6A51EE151359796FA7DC7F	5CB033F92B34EAB92E4773A899577EFD8D4D8B11	73121031D067E34C85EA29C98202F2196BC6D4AE079367CA74C91677A8032B46
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006A.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4E131DBFEC5C2462273CA7B35675B9D9	CA037F444D819A118AC37D7AA3782B9BF94C1616	2A4A3530D652E227DDD5ADC096A95F6034718F7C380B07DB622022D768815059
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006B.bin (copy)	data	D96FEADE3D8EC4547D14CC3D38AED13E	52FF5C8EEF367942BADFB18942C3336B2333B9F2	521C45C827A8361A114673A13C24EDD8C053130F01597114B4E80B6D6BAFC06B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006C.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	8D804A60E86627383BED6280ED62F1CF	E23FF14B10AD0762DD67FBA3CD6EFC85647C0384	494547E566FB7A63DD429EB0699FE41AA8998F8EA2F758D813FE3D56C3075719
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006D.bin (copy)	data	3D58DBC63D959A61A0515F953754C1B0	D683870AFB0B7F752A1C21A25CBB713EEC78FCE3	8F73E0BF1B737DC38212E74FCFE30DA7884406743829DC6A385B225CC55DD938
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006E.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006F.bin (copy)	data	8B22372ECE4DB3D2F492C7BC85B64678	C7DFFCCF20E2716DE50EAA217EF3780ADED07EFB	8AD8737E2EE65B6C089E1969A68CF93419F08DA723338DE0DEF74C6EE73B7D5A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006G.bin (copy)	data	856B4F7BCAC1A2602154A4DE47A684BD	49890C9BF23043FD0FA58FEF9A7539412487FEA6	572954F275930B9D0AB02629A1937B1038C6E1F69D7484793DD3DBA4DE8F98D7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006H.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006I.bin (copy)	data	007E5542757507DF93FDD6C1A2B4229B	AB29C4BA945CF2A2BD6FD12D63241D0C83BB277A	73821E117BBBC4FDD9BF368F11C68AC2EA1BBC821B89EB9731B09E311D218DE0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006J.bin (copy)	data	E31E34347036070BFA14CE2946588249	6964B6BE6449A25BDCAFB00F1E43754B9B670264	268D41BC26D92EEEAE2EB30E247A6DE407B09EC279EC5876F6700241F3A98254
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006K.bin (copy)	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006L.bin (copy)	data	A55459C4AD9AC5DEBD4B0B95D1E38AEA	6B9338DC27BE49A82B440EEBB662C216E7A61817	C810E72E73062AB293B49FDF03893EA9610447615801BE6C06C0543E64568BB9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\0000006M.bin (copy)	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\header	Matlab v4 mat-file (little endian) 8, rows 975182774, columns 0	A522199300444DC8F970FD5582093800	FC2334E42D6F18117FDD6CBFDCF3C0316D4091FD	CCD3A731F644E1C486A737F45ADAD8CC1EECCC8A2FD7C7027E369B4E91B18D73
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000001.bin	data	CD74ABACE8A00B17BD8107BC5982C21E	D53193CF8A43D766FBFA52976192F44D6B0F79B2	B670BC07C9CB554511180DCF3F6A2C7818E8CE6E67B84784F0EA4D35EC61D516
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000002.bin	data	AE618485532F3315D676CF4E2AC1289B	128893093C0DCFCC337881A8709DF41998811D9D	66D858F52CF8AE913596359931C63864F039CD49C9167F16F8A68013802E640D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000003.bin	data	2A8DFEE5CCB63A460E16AA4CA907003D	05C71DB005F3BB7122A9CB371F2B2F40B519A975	A3A8FD70DE1EB7231C487A9F3C27FC4D30EAD7BBCB23CB55D0A4FB7AF4BD8B7E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000004.bin	data	1234A95F90D4F15B57ADA298F0E98F25	591C0449556615194AA474FBAB073336152C7EA9	36C266C4F6A7A22421BA6FBD4DC7157069665113FB67B8A1D7A11164C7D574D6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000005.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000006.bin	data	043786707ADCF5C5FA64083D501CB647	E8D894F40590EFA097104499A0160D16297C8DE5	8594219BC51C53AAFB384DE5A2DC654639B660E94FDF6C973DB5D3DDB222DB61
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000007.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000008.bin	data	26A8988581EC569931C98FD0BD2D9370	FF90F8A8E6B275A76DDF52FA2682F834EF716223	3046B50C60B0F00E12F03B55DAE08C9305D366C856A2A29DB3E4EEE611127728
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000009.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000A.bin	data	CAAA480B50DAA1DE25A1A40104F984D8	53E4CACA6B2D212B0D9C4AC22541F43D046DA7F1	2911566CA44FFF2F1AB0164A574055D61B78A398EDBF304F2550E3722F3EDDEB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000B.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	47ADB0DF6FDA756920225A099B722322	851946B8C2BD0BB351BAEECA9E5BB6648A87D7CA	EC8CD7250F3D82E900E99114869777EE859EC73EFFABED108815F65742078C3A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000C.bin	data	A404F5EEA3F5A397069CFDB1124E5AAE	86666701E90F8EFF0803F0B882731926A22C95D4	53A0EED94E58955CA09AA86C0CA39F8621CB7D3023F74A04CC1198D918A80AEE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000D.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000E.bin	data	D63746770E45DBBDDA8254BAF706B015	EC22895974FBFB26339D8AD6FAC76275E5ED7F90	80A948773EA08F37CB42721968BC8070181F8FA8638E298072F606805CBBAE1A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000F.bin	data	A7E600951D5A2FE9B2CD4FA379EF76A6	E1ED123A8570EE01FBB7F877D91C7D05050EC73A	D757484B1A6FE4F30294346A7C66FF1C1677373B7010EE06ED62FD2E2CCD2B85
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000G.bin	data	03814BC353B26376A173EC4C6F21E970	29C7FF767D7F65BEF6E9AFEC57E9A77B2A4E4FB3	80F2A33AB13791E857DE594C06E87367109F00C9C2F72E03942FD4F61208BF9E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000H.bin	data	CC4743C95FB03682A36F350B6B6FCA79	ADAB1B3B28FCC134BBFA1CFFEFB2ED54D7008CF4	EB62E64201BFD7B63DCB29ED04AFDBA02665651354769FB0BAB526ABF502ED8E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000I.bin	data	541ACCA11C914132695E016B508F4246	C7C6AEC6605E4E9E820E422BE16EB8C0784E377B	B6E2FAA1108D8A7A643CEDC04B3F01FE27655543D164CC645AA6F474F8F42F75
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000J.bin	data	8E37831C70BF51778434D2B166EEEF61	3AF58B9A6B5D86C07EA8F40199621AEAEEEF4649	2E718C184063E204FF2B10886F4A4E75E51EDE7DD62DEA015CB552F3AE7002B0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000K.bin	data	BC8610BC541E9089484E3220C76DEC28	63ED65687F0992163054124A0ECCBA5415FE00FB	6489CFEC97F2D8E6F3594A730442F725D080702C7F155531641E157B36D05BE9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000L.bin	data	BCC872BFBC08213790296F1F777AFEFD	B2AA084E308ADFBC070A5B3FEE1BF512C7D9CDD9	FF63B093A6C7ED680CCEB1196161BD1F844FAA4433C01154CCE0511F4C365BE6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000M.bin	data	2BFDBBF25990103AC2D731E32B74C044	B8E70C5A9333E033594518FF832120CD5419C98D	B3D3FA78684EE6D51C0A72F3B38E27C91461707592782B769B8846B6738E927D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000N.bin	data	B02163F21A0B245AAD9DD1C7EB1B3215	7522E34FA4E7EC7EA80AC3D0A23DA663C808C78F	6860F9373EA0E9223CC506A69C08B2CD2CF5A3EC801F506BE57648E5520E72E1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000O.bin	data	1F84346EED37C1BD8BB7CAC049F1B5E8	C179BF97136107CFF9A8DB6F3A3CCD6159CAEF86	C07CB554877182F672565336253259A2ABA5AADCB755A2591043A65B692098C3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000P.bin	data	157B3E9B2E4421F9063C8DF72C23C8E0	5441FEB77FFF3C837B89498FAD05EA88A21431C8	768A4E4FCED3626FA94C51C5D00C4341F75B0DA7497BE9C4D3E0AF608B3AC955
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000Q.bin	data	43F4096639BD32BEBAD786D5F9EDCF31	B492859388B0FFACA1AB43D784182882ED7D1AE1	EE5C12FE239989FC76FA12223514100A9C741C143A381136D6611A4428154365
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000R.bin	data	17B4D5032E36C27F7D58AF815EBF3186	C86F8F7CF964385CDEB925CFA39FA4FE63B9D09C	7B8FAD544F8655679C6D93EC57D70BC121FE5494C90AA741FCBA93B9261CA38A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000S.bin	data	7CBBB6F9087A7401A95194CBD6FBB944	B7466A1D42F2AC0531F609D46CF69150A5EF8D64	B611B88BEA8B42301281D6ECACD4C7DC9B5E6F4B9560F30AB6F1C204F219E84A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000T.bin	data	2FB9BC4C422FEA5C7C60F94C7F8C44F8	DDB5B93D9BD921AF6E6FA315606177F389166512	6473EDF86F9D87F707CF02F16AFD60FAB72BCF31D6CC9B49B27AA262E46384DA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000U.bin	data	597F86EE1CF7D4FFC9B2CE67A8A6FFDA	39FF7A61C34222F7927BD3A8AE531B392D0688FE	3D3CAD9CE88C50DC086D03D8122180615DAF342E0CD2E69B4809AC290F7E53D7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000000V.bin	data	A4EAB37F81D089E00691DB9A37B73DD1	09C6F3418AEE77A1528545B14650E9A3294C0CA5	AFAB3C05DA23178133C82A05C0A574208562738B8E79FF9068791503088DEF41
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000010.bin	data	3269FD5C9726AAD4CBEB17E04F322F50	7D0DF65A8DFA886E44EE6E7827A311B53EFA0ACE	6A0D7126DE1798082A9EB73F884717DC3EF014C8CF40497A125960AD59B458E6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000011.bin	data	6A41C5D0F6D4DC2C229861DFF9EA4C02	0CE3BA66E8F10778279CDF811F5AD0B0D0BA4F71	D1102208B4A5572595FA070478FEA21128429D6C13F5D47FEE944587CE8500E7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000012.bin	data	2308F0EB44ED4B25151BBE2022A96E69	F2DCB2F34CBA7BCF7405482AE13956DB05EA0A4C	C11C6D0C309D26F0AC779E073C12458380E9C1592C5B2C2E454765EE03B3505B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000013.bin	data	7F17625C237A1EF7A178E74878E99C4C	012F49E9A71781CE08CE49A0FD764C6EAC8F7E4E	043F7A18403AECA14C6359EAE353FA2C0256340A02465EE784E75325BCF395EA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000014.bin	data	A7140B857DD152B98832046ECBB75BB8	6CB270B34A4619680D7DDE0D765C63FAEA38C014	606B292A3F695E68294A8C4D774F724657EC3B95F5D4CDAE457CF7DDA6DCF893
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000015.bin	data	7E288DE4DDB2A05F5064705A738FF8CC	A1F6751C3E5C2620563A3185DD61C669C23079D5	FC8F47FB8854CC9547327A8227ED91037618E7F4278CC95C40AF42DFB675FCFF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000016.bin	data	A35B580DB94059BA1A688139B3B6AA21	A970E90659A555E2181C322613F0E2BB375D81E8	77FA2141131E88DB2FB5128C8C076715C79DF06CD28470DA665E28B9CDB82EA2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000017.bin	data	CFDB84ADE94E69A631846DE2BA9A25F0	8B6B9DF17C9A9112AECB3AF91330C4CA56E3A1EA	91D0BAB2FF8F223361575E9C7A40C6AC072E3457067C78AE17581F723189F30E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000018.bin	data	63F4611758F3A97107A1F0BAE70B808F	11553FC1813257F70C3E41356B0CD56B4B475BF5	1CDA4499E06F8AE41111692B1ECE3E1A15243F734F985B8E9F2875EA946CEA60
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000019.bin	data	F1BB23E94B37F8EA805FB343E0057363	8CCE7C5B371E2F410A595CBB5D161B0DE9F9148D	3CB2F9D073DA44A5298E0FDEFF0D6E8A697AA60427C902C9D8BCBBC09A06C996
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001A.bin	data	A40380FFA70406086F711CCC29F9B333	A6CF9BBC6BC6167119F8A45BB7A2AC50FC8FF6CD	EFE35402B525D61460CF94C841881978D45F3416BB5D5971576715BCCA70E796
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001B.bin	data	6C6C01D6EB2D49CADA946DC67C88E51D	6EB0954C7F8201790B98D66BD9D4662127E95447	06CCBE4AC36A33F37603C6B3F911EA7111A04CFAE344801B5F03483C694973C3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001C.bin	data	639FCD7EC099B1A1038457BAE9799BB4	8DE1B542F0AF57F14BA28DC231F92B7FCE5CEF07	6881B428C2EAC87543A31208D59BE4C38B6D152273ACABF437C80809DDFFA85A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001D.bin	data	ACFE67EF3C1FC877D78037060728BCA2	4F9A5CCD67BD0354C8B437F219757DD3821634B0	D828A16A99ECE3446E90BCDC3194BDC865B43EFA9A2BDF8796C7D945F6EE0A0E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001E.bin	data	C2E81F6B0C80955C8E987538BA4524A0	74CE23FC59DB5E86A337274E620CB6680DD66061	B0F2917581FEACA7477ACC46BAC2B010D86AA338C7662019F90C7166CFD03228
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001F.bin	data	405F6AF464E9C568CB3ABB7ABB398077	BA6D3A5A4C686E6D28DF6929353A4DAAE7F856B4	DEF272BFC8129A08FF77EBB30F089F9523711646DDBE015A09D657EA5AFAD1B9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001G.bin	data	CB06FE5BAA6316015EA7FEA99CFF0B94	E889ADFD561EDAA1F3726EC0722F90E97A0B2B2F	09B55DF64D041100D7621DEAF9438B470E9D121CD85E1AD040DAB043B38F496B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001H.bin	data	A8F75B406D3B0DA479152A88A448C25F	9466BBC2053C6CB1B25237DE0862050CEC697022	80E8F6ECA8CBE72CB211F8B7D85405975E344FCF37B9208181581BA2D99353DE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001I.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001J.bin	data	EE91B75E781F90AF1A347CEE65AAD2F4	B83329AC39B8EF129B4E9FE39996032CECC23403	FFFC5D9BE9D195C40E8730843123507CD792ADD178AF9B0DCA2F7D28FCE6C878
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001K.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001L.bin	data	6B3E695B299CFB7C8585B97E9BC18031	AA9251B9278D9586503073D07D26AFF2EE0CB085	1492021FA1E636770608D4694DDA1955C21D7747DD9A635BF0DC30B705C02754
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001M.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001N.bin	data	E58784B3A02896A59721594B8ED75998	D08EA8778948FE809B6602E9B6BC8721022DDFD5	43876DCEAAEE1C911DDFFB9C6D3A18E0A59511FA7962D38261739FF7622BF890
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001O.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001P.bin	data	3DB4D1ED369E633159BD80171C2652EC	5400DA6B6863333FCD33030751BB921351D3F144	ED5A2EB5322AFF32BB735088C3887A4DDDD594AF570AF49A3CA85A3D9C347406
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001Q.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001R.bin	data	68E7382459B27D5309EE1547899322C9	FA47626BDC2EEC4F69D5514E317AF44D32A319B2	98573E262F090D6EDB71CAE8E0A2E19E371481409FBD4DD2467828930DA6D03B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001S.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001T.bin	data	30586F9DA5CB0EC318467A5426AA37CF	7A891E4CDDC91DB6875ED1204EC5CC8BC795C7C6	2FF51BC513160D4203E2DCBE050583CC6F0C96599DC78F49C74BDCFEC4D28B50
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001U.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000001V.bin	data	2B58FBB137EEEF0A02FE1400008362C6	C9AA18A742854F11246B1EF03B2BE2D593597E0D	4E83287E646351ABD8D24C1683D1378DCCEE736FC1492A7D2E752BC5D11DCDA6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000020.bin	data	F720ECA7023972821E131031C2556254	3811144252E7AF10409E0C293983AC629F9567C1	D281C7795D696F8352EEA9B134685C37BCAFAB7F2199DA8A7A40D1EBA51A1D03
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000021.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 814x105, components 3	4BCCCDBB4273ECEBE216C84930A8D0B2	FFBF617787E27BC94D9BAF89F2FE34A2BD42794B	474F9A8C25D5E21192315397EA995B1E11E2C1608157C6E0277688091BFD136A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000022.bin	data	73E2E15C213B5CF391B3791B87F988CD	5219341774B3D4808289EA0ED04D5E1B57C8ED2B	98BDC30046562FB4F9A7154307ED49B9E98E54B9ED0546412E16E8E7983D1555
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000023.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 728x77, components 3	B23DE98D5B4AFC269ED7EBFDDECE9716	10AF507A8079293A9AE0E3B96CF63A949B4588AA	646586CB71742A2369A529876B41AF6A472C35CC508D1AE5D8395D55784814F2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000024.bin	data	E2AA2A66BEB5D77987920A5A5E2CE959	727C58FC5ED85DE1B12B4DF63981D484229C3665	5B746E0EC8C9A8C3342449BE5ED3B60715B7750C003BF7FA31C1D2BB308701D4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000025.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 69x630, components 3	02775A1E41CF53AC771D820003903913	2951A94A05ECF65E86D44C3C663B9B44BAD2BC9D	83245F217DEAE4A4143B565E13C045DBB32A9063E8C6B2E43BB15CD76C5F9219
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000026.bin	data	A0CA11433E4B5E166ECAC36CD6F41207	03E442E3123872A0A2F5F0C9F088BF4E5A1CE490	4469266CD0D54F5462996C88BDCB82B14F31CF2A8ADCF75CA0C6F889853224EE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000027.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 105x441, components 3	09A7AE94AA8E517298A9618A13D6E0E2	FA5181A7414BA32F816BF0C4278EC20C615E8B1A	3C68C7EE798E62A4A99C740153F3980D7DF029605C843410942C7F85E794823B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000028.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 76x97, components 3	14105A831FE32590E52C2E2E41879624	078FA63FC7DB5830E9059DF02D56882240429D90	D0A3A1C3CD63C4023FE5716CBE2C211307D0E277E444D9EF76C7FC097A845FD4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000029.bin	data	2494993B1F5660C6E2212F1868EF8BDF	849A4E86C926ECF8D8E5D2E2D5B75736EE757A1A	1D0C9E4CE500F69E1D0C543678FE84E09F65C11FF67D5BA654BD22937A146C30
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002A.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 95x498, components 3	D9BD80D40B458EDB2A318F639561579A	83BA01519F3C7C1525C2EA4C2D9B40F28B2F2E5E	509A6945FACFB3DDC7BE6EE8B82797AD0C72DB5755486EE878125A959CC09B59
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002B.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 700x114, components 3	DB8A181E3F0EAD4A9472099E42ED6BE3	92096AF05CC6167B1AA816811A1160B809393FA2	E9746B4E9AE9CE7B3B0068779DB3E113E2DFC9880F25373D745D0E700E69A906
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002C.bin	data	4916704F560A1AD41CF2008A0C266171	67D89A8677D783A105549C0D87D2EBC6893EECED	4355AB5C767D32DF4CCC1091537E3C5072B0A78C6F0FBE16FEC04A720620E4EE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002D.bin	PNG image data, 813 x 99, 8-bit/color RGBA, non-interlaced	EA45266A770EEA27A24A5BB3BE688B14	9F0B23B3C8EBA4FC3C521E875EF876FBE018F3C8	EDAD0F03E6FF99FEF9EF8E8B834CE74F26CD23C5F8C067F5CEE66F304181E64D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002E.bin	data	C4EC9A9490DD7E7A2AE8B8D58B0DA8C7	4C6FC73BC85175FCC18BA387189A77EC6B8AD6A6	5EDA3AC7995A257AD8F562F8B2CA45D3D50445B7EF9C016756BEF82DDB9B72F0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002F.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 780x107, components 3	7C7D9922101488124D2E4666709198AC	00CC44A1B84D4D94A0ACE8834491EB5F65D04619	20016E5FA1A32DCE5AF4E92872597E36432185A7BB2E61C91F362BD68484529B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002G.bin	data	BBC00BDD57A605C2412CAE48DEEA4C6E	327B36B2C2B1E7B2DAF9E113EFA975AE921BE8B3	17F2888710FF39AC37BD8F6568411AB05C01F4EEA10D3E072AB4190BFA651FA1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002H.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 613x144, components 3	DF99CAAAB9A7DE97B63343E60A699AB6	B84334135CFB73BC6EF55F85926770D5AC6DFEA8	74C131777E7C437FD654427417097BC01B0813BA8E1E50E4B937BD50A1BEBCDB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002I.bin	data	EC3767319F9D57D508F89F5C4060EDF2	D8C5577208836D7DE7D3209B83E22A71936F6468	BB1CB7ADE879C93840A81683485FA8BB188DD708BC03C950C7E2179BCC8C52AC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002J.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 276x139, components 3	5D6C1F361BC04403555BE945E28E53FC	00C254F7B3BC0289590C2BBDBB39C8EC2E2B2821	131D637CDC5D0B094FB9FAD17F4D2A1ACE0D03613588155AACAA2D1CB4E16DA9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002K.bin	data	0D52C8452DCF3C3A64D563D234FE3F36	0CDDB260D9E02168319911CC880A9698943A5A66	8C977A364B325CFD9B7CCCE1AB7A74DD0A1AB71170E77EB29633A72676393927
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002L.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 814x45, components 3	943371B39CA847674998535110462220	5CA79B7BD7E0E93271463FAEF3280F1644CBA073	9C552717E8D5079BBB226948641FF13532DF3D7BE434C6CE545F1692FA57D45A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002M.bin	data	A0A59583329CA502120AE41A75759B70	469E7A6720AB1A5E6ABB6ECAC2B50B9F5CB59068	49FF61B20CDEACC717CEF041B09A0F66CE521F3A857025AB3BD7F842F2124490
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002N.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 262x277, components 3	8A5444524F467A45A5A10245F89C855A	ACE68D567B02B68275E0345C86DB1139C0EC1386	7D2B01F17354D9237A6AB99D5B9AFDF0E1CC43687125848B0C2DEDFB44CE3843
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002O.bin	data	D93650520EB62C8B8FE63E2F56368D55	1EDD938FDB159FC0AF7056C9A28F04A7A9EAC0CF	DDD0544A48DA3EF9AE1F8ADA4C893396EB5C02584837EC59F1B5D74C0C223C89
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002P.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 70x626, components 3	EE9E2DF458733B61333E8A82F7A2613D	A86704C969F51B86D6A05ED51C6C60214ED9FA89	BE4F0E6C89FCE91B9EBD2623567F7DFC259E0E3C77C9158742B8F64B724DF673
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002Q.bin	data	46BE636A1960F89B8451F9ADB199233B	B91864D16825695C135F25D7B9B44FA5DCB62C2B	43860D9DD5FE2910B1AA9A04A18F85E7623229D3AAA81B32032A880B1C350E9B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002R.bin	PNG image data, 177 x 123, 8-bit/color RGBA, non-interlaced	8B48DA9F89264D14B83FF9969F869577	E1BD58E2D80FEEF56DC514F3F0B3AB9669F22F95	62AD3C277E54F03F1ADB44062407346F789E63859B7AFABFD64BE6AF5E9F66EC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002S.bin	data	74CDB4A226A76284087A0EAE4D9BDD16	67185324FF23359C9F501307119934FFD6FAC262	EAA58CDF4378FCDECD877E4039957483D3F210B78DBCBA6019C732EA02568904
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002T.bin	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 17x608, components 3	4FC8500BD304AD127AF4B5E269DFF59B	9A5E3432358A0FCDECE86AEB967319B93A65D14A	B4DAA90D5A53FCBC85119050B5B76962443C4DD18D7F42CDC6D4E0AD8EFAD872
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002U.bin	data	BB382ECC719B1DFB051F4B9746D2C965	7090152766FF94FDB7E13565D233CBB6D0884046	4D3A73C3ACCCBDECDB8620AFD309E187A5EA18539CA9D12C0726910F5AD3CDB7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000002V.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 357x69, components 3	8470F9A96B6C6CAD9EE60961E96D19B2	AFE1F01FFA4E4CB06B1D770C9C59DA75B434D1AC	2DF453410796AEC7B9EFEC00059B6CE64BCF67313A95AE458BA600EA5DE14811
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000030.bin	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 14x341, components 3	A994063FF2ABEB78917C5382B2F5FA8C	BD5C4D816B04A2B6596DFE38DB01228F553FACCC	D72900E8DA72D1A7F3729971AA558E1E9B6E9CF9A0D51E83852E567256DBBFEF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000031.bin	data	291B1B45BAC4EF4B8B77D1180C125D15	6A4FB9333B5417BA4195A5BA1F9E00DC7F086AA1	FE6EFDEF395AB299F77937D9374FF6FCC3429885EB91E83494F5D587D6E31A0F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000032.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:15:20], progressive, precision 8, 604x784, components 3	CC087700C07D674D69AFDFDA0FA9825C	F11113DF69DACDB255C6CBCFB29C1D1CCE40B346	A7FA7F092EFF43030A56342C39A765F8D5CC48C7DB815DDFC8C1E5EC40117FAE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000033.bin	data	62F236F25C419D8494D57D4CB52B6132	7B5F918F344FBED8273EE576BD0E74C5F72EB909	B6DD57F08C9763067828BC0BA0EDD6C65C8C43D21EA44163F7B328C8CCB913BB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000034.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:13:06], progressive, precision 8, 570x779, components 3	737E96E41D79D3BDACE7AB4F8CBF6274	E6202A41A4F86B27D9EBCAEF7670B16C0ED67CF2	7966F3D8A2D61ECB49A35E163781858E052C0B122A18A1238AFE27B57E2850E8
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000035.bin	data	F9AC748F90194F2F3E8EBF1E1FA38871	E930773D1055F816B0B78989533593E402AEDD9F	B657FDBF04224964ADF2FDA2EE10DBD53E92A4CD0B846EA1F79F5DFEA776248B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000036.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	CB84C108A76C2AFFCAC2551A3C1EAD56	8BB7C2A12B056C1ED12EBBAE5BC9F60CCE880FFE	139BB0E79F89C3DDEF79B1716A5FBAB4C07DF5785FB3CDF6B4EEDDBF6C078452
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000037.bin	data	EB054B2D0D2BFFB55195F4F20F2F8620	75156D546E4CF42ED0F3880DB07828F15142E1A3	6A18D1B6CBFE556CCF02B110187D3ECDC88BFA3E968D8B6200EEC01E492871B5
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000038.bin	PNG image data, 40 x 623, 8-bit colormap, non-interlaced	07DB3F43DE7C1392C67802E74707DAA6	C173ADB1999065C5E1E6DBEF934B4D4D7AF0CC23	51E05999A1C9F17DF28CB474E57DD8E64BDAB824874A532C20A23766A01F8967
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000039.bin	data	16BB67D7BE3B19473ECE440FD9C88532	AB06FCB91DDD074A8E435A50A85261BF86D32D1E	D787A11BE86BEBAA32CE16E9C390146BEC5FAF0762FC3417D471002823F1041E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003A.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	B1DDD365D87605F96D72042CB56572F6	ADF71DAD1A62B8A58A657C2EDBDD665A19EB846B	06E09DE80C3F32254DA4FE6B2CBAD7C05EF144DD54B8C65745E195BBF7317A2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003B.bin	data	DD0F2942B8B9EB11C71CB79C5CD1A96D	097F4BE688FC4BB197CB2CC5F1C2FA46EDEB09F3	D8D22DFD4D416AA6728E9B0EFD6A2DE7709C4BBE8576F6B5FFE0B5EEA4AEB357
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003C.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:10:32], progressive, precision 8, 594x773, components 3	C594A4AA7234EF91E6C2714CFE1410F1	C0F720D4CE3196852814D0B7347F0CAA0C6FD526	10C833E47BE1C8496F949A6B059C2D79212A4DD66BDE62116EA337FA4FE0B654
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003D.bin	data	70EA99FA7F3801C4FD4C8A1D51C260E6	0CEBD018236140F12979910AEF26368F395EBE14	B5B392377AC8DA15B767F7C8B0441C95DCA604FBE46A5B02A757A2A2D142F1C1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003E.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:12:29], progressive, precision 8, 598x766, components 3	EC7811912ACA47F6AEB912469761D70D	C759BC2D908705D599B03BDB366C951B11F99A4E	FBB4573E3BEE1B337077691BEBAE15D6FAC52432405D31396D526D7694A8283D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003F.bin	data	C509AF2BDDD2C12E7B1B34C29A552A09	5227CCD2F830E5ABEEB6452D9394F3AE4D644197	62E721F1EF19C805082886ED1364D1E140466A274D6CD5AFEC145E8E2912660B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003G.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003H.bin	data	FF145F472F395E48B24A8FBC1F625388	52515B8AE77193DA60E53F52265C2B85C25CAF4C	F428092B051314ECEA44D853615CE027ABEC6C410224F819FB2880338628AC8A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003I.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7A450E086AD14BA7D89BA5DB3D3AE6C7	E7AEAFCFCE476390E18C19456BDF6529D863D518	BDD997068701ED3A00A224EB694B003C01AC69B857FE7B4147D6C34875B1632B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003J.bin	data	4AF451C6F66F2A47E92146C373ABDED3	75FE1125FC06B091CD9BB565A3A3D3FFF3D05AAF	DB063673BC8306B5994FBD0CBD2692B1616C3B1150CC31B5D5E644D4194ADB32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003K.bin	PNG image data, 60 x 336, 4-bit colormap, non-interlaced	78762C169F8B104CB57DFF5A1669D2DF	9638B71B584CD636834016A635ABF8D9C0887711	E64FDCD0B108737D8B8F7B677029F924031D6BBAA50585D9C3DEF7C7E92ECAF2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003L.bin	data	0B4B6156F1C6E70BFF16967DF750A489	D40B24B0EC5AC175C1F866895752F48E831208DE	579693026F4617F426D83C3487FAB570B8F6DC8700A54E631AA1A345CD693CB8
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003M.bin	PNG image data, 40 x 617, 8-bit colormap, non-interlaced	3E675D61F588462FB452342B14BCF9C0	86B62019BC3C5BE48B654256B5D10293FC8C842A	639EADAD468B6B32B9124B1F4395A8DA3027FF7258D102173BA070AE2ED541AE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003N.bin	data	5A0A5AFED347C8588B35FBF5E31D959C	13E2F5E41225B0560E00DD6A6B0636D47E821292	45417F7695EBD804FDABF111CBC8A11DE32F837B6A12CD00D0D6C69BCB4DDF28
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003O.bin	PNG image data, 50 x 600, 8-bit colormap, non-interlaced	2494381A1ACDC83843B912CFCDE5643B	98F9D1CC140076D1AE5A9EA19F47658FD5DF0D66	5EEBE803E434A845D19BC600DF3C75E98BB69BD0DE473CEEC410D1B3A9154E28
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003P.bin	data	0F7C8BA86FD4F34F870D318ACEAB50C6	D720177286C438FB12AA5E2185AA7D8FF28E5239	1AEB53D40793EEB785962BB60FEB3B870E80D7E2CE76A1DFFDB56493EFE32B77
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003Q.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4A2472AC2A9434E35701362D1C56EDDF	16FA2EA2D2808D75445896E03B67A93000EEDDD8	505F731CB7707EFAB2EB06685B392DC7E59265A40B55AAE43E5DC15C0A86CBA4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003R.bin	data	F3A9E61722F792676A395D75856E9721	7CD5D4D3DE9EE35548BCACBFCAEF2E60827E1C7D	F35C60DFD261555D65145BA7E25E90EA6029A69E2B65B3E89D2BE06530C467AD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003S.bin	PNG image data, 77 x 627, 8-bit colormap, non-interlaced	FA38AFA965141EA3F17863EE8DCCDE61	2B4611E651AF7549C1AA73932B1136B561A7602F	E1CB1A0EC9BE62D5445C73AA84DF38234002A7E164EE830C9DF24997802CB5D2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003T.bin	data	E39184E79279CE86E2431976CD01A86C	80A0E9C9D96B0BCBF4085AA6F1B7490B2E094C97	FF87050499774BF00166CC7167FB681065D1A3D6322605F7A7190E004AB13718
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003U.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000003V.bin	data	1B61D48138F80FD68A7EEC7FD2C55F6C	999BAE3ECBA68F5A5D08A006AEBBB0CB925333A3	318D41C4118796A20D27167542E882093B05E2D43E7CC47D20B0F026715D48DC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000040.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	39FF3ACAE544EAC172B1269F825B9E9F	2D40DE8D90BD21D56314D3F99CEF4FBAE3712C0F	70475431CCA3C91A4EFA3B8F04864371D2D3A45696674A1A0562FE9CD8DB287C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000041.bin	data	79C4B1B2108493A4515B7052AE6274C3	28CFD22C9AB3AA4B3EBE183AB8200393D9742A96	0D1BD2C1028183141766A1B2A2DA68FACBED38D0B9C513374A2C410FDCB633B3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000042.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000043.bin	data	9EE2A4539F94E91690D9ABF5321C8E49	5135AEB2DECE51F443A7F1BCE7A5B1F2DA092C5D	8962D2C5A9801FF6563E8EB52A89EF3CDBFC54874F47DC6D0E1565E41139D38E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000044.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000045.bin	data	7E09108B9C5D12961891CD751006E80A	FC3126FDD60A6B333F7C8BD1575ED727FDFECABF	F71081516D76472626D42572B2E58CA62AB868DDF50E9B61F2B416139D5FA0DA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000046.bin	PNG image data, 176 x 513, 8-bit colormap, non-interlaced	8E9AB9C28B155A66BC5C0DA5E2A4EFB5	972E61F162D48F1CEE21963ECBB2FE439105DB55	B243A24FA13BC8523450E22F408F9EFF15301C938F8CA52A57018B58CE6785DE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000047.bin	data	B2E5E9BAD6473457E2AD98BA7164B76D	9CEAB16752DFFF7227D8A7F054F58527C0F52B0D	E5A2CC81AFA7862FC26F1A13D3F56C61502A65A8EBDD4F8D4A0465601B0EE8BA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000048.bin	PNG image data, 40 x 650, 8-bit colormap, non-interlaced	DD876AA103BEC3AC83C769D768AD39FB	1833603AA9B6A7E53F9AD8A336F96CCE33088234	1262DD23AD54E935CFA10FEB1BE56648E43BEF1116696CA71D87E6E033B1CA7D
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000049.bin	data	87D951B5DA071E4B93F2D96FA425BAB4	9006EAA4ED21544DAA5787F119E63BF7D5A6082B	BAE789F90A07066FC5C9C53E6D9627EF00AAAD0CADF2D9B327B9C520C8882A8A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004A.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:27:10], progressive, precision 8, 102x792, components 3	1122BF4C2A42B4FA7F29D3C94954A7C9	3750077A830FE21735A43ABD35C63BA9A4D4B0DE	423B0DD1A93B391D15B1DC8D8757C3BF5725FF2E7A59E6E3140033E2876B67F6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004B.bin	data	B583A5806E39127AE7211C1B7E69C308	F16F1459A4D298FF4C1463AA4FE70CE11D45094E	B627B0305D60C5D395CDB094C8064DA37A7B0DC0C380CD8F53F5CBEDFBB6B4F6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004C.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004D.bin	data	608C2F64A6CBDD33BE2BBECFABC0ADDC	13E829D9B24EFF3D2AD8273E178B071B393A5ACD	ED88B7B61C0D8CF987CF1C2F120AA717A26B56128696D3AEAE1E87742B1B40DF
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004E.bin	PNG image data, 50 x 556, 8-bit colormap, non-interlaced	B7F74C18002A81A578A4EE60C407A8D3	70A7D4BB1B3ADF4397D168AD0D81B286F88EBDE0	95F59A0433050180D4C0E8858B83363D51BEA6752A8B7CA516A8677854D8F5B6
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004F.bin	data	0D42643D90CED77D5CEB532C2455748D	38874D4FC8B1646CA5AE083B9CE6D135B66563D0	6E228A2011A9C4ADFDAFEBAB50B0E93A86817ECFCF18DB7511E08B43CDA8B695
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004G.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	E9C52A7381075E4EBC59296F96C79399	BE295AD24D46E2420D7163642B658BF3234A27EA	D56CEFE9EE2FAE72E31BDBA7DD2AA4426EA22E3CEB22EF68C8F63F9F24D5A8BC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004H.bin	data	0B803F5BC393BE2C49C92F7A9B65A433	EB4F8C563E19F90C21C6AB56DFEE58BEE35A4504	B2403BF69026DFE1C2DB31E999741DCF6E590CADF10B7B7DE44013A84B8F1ACA
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004I.bin	PNG image data, 171 x 552, 8-bit colormap, non-interlaced	E1B57A8851177DD25DC05B50B904656A	96D2E31A325322F2720722973814D2CAED23D546	2035407A0540E1C4F7934DB08BA4ADD750FCB9A62863DDD9553E7871C81A99E3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004J.bin	data	0F089D9B2C86203BF2D8D2690DC4D161	1CB8DBE456070E6C6F8D02AAB652A40BA1A7CC05	390EF5509CCDCC35F623DB8C7C49573DFC6C9E1B0301B8C947A7257017A75729
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004K.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:11:38], progressive, precision 8, 577x757, components 3	37EED97290E8ECB46A576C84F0810568	18D9FACB4CFA3CBF63B882CABCF30B203EDF4126	140DD943D0F0CFE6AAA98470B7D1A7CB62CA02CB1D8F522DD2AC77433232EF41
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004L.bin	data	5E070D77BE0D8C3F021D17963A4B7480	B9D22A61110BCC581F6257F0E33420DB21727007	A575666E4891FFEAE6E8149A1B6287E555F383372C791026B8F27A3CF20D4904
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004M.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:26:15], progressive, precision 8, 216x792, components 3	864EEA0336F8628AE4A1ED46D4406807	CFCD7A751DFDBE52A20C03EE0C60FDFFA7A45B93	7CE10D1EA660D2F9CF8B704F3FAB2966A4CE2627D9858D32C75D857095012098
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004N.bin	data	85108A9FD9CC04F1ED945CB0BDD15336	63B1119C9D57150C18AAF912D720A7958C4B5090	BACA156F70DEE839D449C66C627F052BAF849EB47C9A32ED32794D38E6C2494A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004O.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:09:29], progressive, precision 8, 609x675, components 3	B4F0A040890EE6F61EF8D9E094893C9C	303BCBA1D777B03BFD99CC01A48E0BB493C93E04	1F81DDE3B42F23F0666D92EBF14D62893B31B39D72C07AEE070EAE28C2E6980E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004P.bin	data	125E5DF7977D71FE576EFEDAA984633A	ADBE8192EE01D282F4FC65FA13AA51D4E8CAA146	EDE104827343E96648AB5B6F20F542FAFDEFB2289D783D66BDB7128D90A03584
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004Q.bin	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004R.bin	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004S.bin	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004T.bin	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004U.bin	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000004V.bin	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000050.bin	data	FC3A35B2181AC3C83A57128054E9005B	2A828846CE11ED421992D9DD2D69A5C165FFC00E	EDA2138CEBACE9B93925D87F48305109859909A81A5D15019B47DA6CE748F782
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000051.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000052.bin	data	F29057E6DF196C548A3FDC6F3AA25805	F4D3EC011270314B63E87E55E20376F48D4A057B	162A4778CCAA084483E28CDE3E500A6550D62A4C40AED08D7AAF949925A0AFE9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000053.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000054.bin	data	0ABB047A84348BEB6432C844A0C81D6C	57CCC4737067C98BBBE3805C0C7DF077E0E67631	AFB23A0ADF33C2DF08DF164AAEF4A36157ACD1F22AA901BD995CA891728666E2
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000055.bin	PNG image data, 50 x 500, 8-bit colormap, non-interlaced	CA7D2BECCBC3741D73453DCF21D846E0	E34B7788498E33FFF0CFB00125E6BA9E090F6CED	E9EAD0BFC09D32CB366010CDFEDE1C432A2D1D550CB7332BADAC1BEE9482BC86
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000056.bin	data	B851198710CDFAD1C6C5992CA364A169	926CCC510AAAAF744A53F97F58B105FDA046E1C0	D48AAA756A73E50D315DB8002F7E026AFFE17D6E8DFD5CA1CBDB458A945B8131
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000057.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000058.bin	data	398D531EFF90B275502005C15A7E0472	AAB06783FC7504281118E515AB2E28DD9338EED8	37B5C382CFBE3C35B568181B88781C41E96D8C5FA90C73EB81EDEE6F1D31F139
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000059.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005A.bin	data	EECB0C305DCD7F2B62B6F433D9A45939	0FB8DCD57C7503B5F587E45D0A8CC35A9BDE8DEB	FB53B1FEBF0559D4C75EEE0056A8348E9CEC265F3C9B58339315FD1C87373BB4
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005B.bin	Windows Enhanced Metafile (EMF) image data version 0x10000	ACF4A9F470281F475EA45E113E9FB009	B20698DDA5E5AFDD86BB359A6578C9860D5DF71F	5DC2367A80588A7518DB5014122510BF0FD784711015EF83A8718336584F82D0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005C.bin	PNG image data, 3005 x 184, 8-bit/color RGBA, non-interlaced	5C859FF69B3A271A9AAB08DFA21E8894	3156302A7450ADFF4D1B6EC893E955D3764D4DD4	B4A8E9A67EE0B897615AC4CCE388FFC175AB92D9E192E6875C79A4E7C1B5BB6E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005D.bin	data	5A204ABD5B1F871D08FE7520B551C347	7308E389CD51DF67837B03CC4930DF28D29A0B30	F71C0266BD89E6E0069E6CAA4F705792EA18E5C7BEE9D431BD6C384ED276F61C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005E.bin	PNG image data, 39 x 600, 8-bit colormap, non-interlaced	F6C596F505504044DF1E36BA5DA3F09B	BCF17EC408899B822492B47E307DE638CC792447	EDBB86F160050FBF1F9860276802BAE292DBFD0BC98E3EA90D43D981E9F0C54A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005F.bin	data	C4BEC77F5568FD0D9E39461E06E19B0E	75372196984B77682C16A0CF47804F88F23C2E05	C0D50A75DE00F43F86E04607EB8E4638EF6D7A44ACBAAD1AFF8BF04E5AFAA0DB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005G.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005H.bin	data	80E60DA4E661CE230DA24F76CDFF17A2	5A1F177BEC613B839C3E0DC74311E1C2AF8362A1	6E0D02B20209F01E6D9AA7D31D4B9EAE33C7EE7013CB3AA00FCEC6474B084547
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005I.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:44:07], progressive, precision 8, 611x163, components 3	9C205C8D770516C5AA70D31B2CA00AF3	9A1002F0CF7F92F1BE2BB25BAD61CEBFAC282482	E111F96490755C7D71E87C88ACAEA38AFE55BB865B1A14A83C5BD239648D5E2C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005J.bin	data	6A7465DADEDFEF4EE7AF09A5D7B26905	41432D02B5360E4A775713238C2E1201BC1BD7FA	C68FD9E74A9B38E95F0FDF6C7A8436067451FEEEDC97F1124329E0FB54AC1B3C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005K.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005L.bin	data	F2199A233AA75FF8271E1A1FBD643A1B	35D353733360164CE142323B32044ECECECB848B	72C91F78CA32A4363268A73C1554823FB20E528C6111F7858DE75BFCA75DE214
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005M.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	D58C51D2CF586A5E14A9EC8529C3B0A8	F4811A353797C29B1E3F5A61B125C46E1534D587	F927C7825851974A2149868146970706523A49165133CEE6027A43E8C9ABDF27
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005N.bin	data	45E63B9E8D167C461B9412B159D4DD1E	B1E9C78090EC3FA895DD0CC1A3A974DB9C8457FD	82C9AADB5D8DB95B175E7CABF341BCA1C1E48075C16E66388D9355AEF3C80D57
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005O.bin	PNG image data, 39 x 579, 8-bit colormap, non-interlaced	E96BE30D892A5412CF262FEE652921CA	8190A0BFE21D04BC6F3A406E91B87CA69C03A2DE	0E31DA4DFCFF4A36C64C1CE940362D2309769F36369E4C43C317D5F2FA15658E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005P.bin	data	4FEB590A217F6FDA31AD6ACA98EEE828	3774767C6B1274983F00AF5E5B21813199F933FC	D4BF7C046EBEF97FA5247A9B4E8509653E468D134C0A087ED08F7E62B8D5A551
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005Q.bin	PNG image data, 30 x 700, 8-bit colormap, non-interlaced	0BA36A74DFBF411FAB348404CCEC3348	4C619790E517416E178161028987DF1CD3B871CC	2E7AAF26BEC32148B96442E8FFF1BD2CEF2D72630969F23B9A2ABEDB6CFEC93B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005R.bin	data	885FCFC8C91F0AFF0A0991E764FCF479	3C18FD0C1BC469F0A75976ACD5BFDDF20460C2EB	55A4CD0A95073B6FA88C0231DCDC9BA235EC133E0B57CAA5EE8D19E7BA3776DD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005S.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	177DD42CA99CAA2CCBF2974221680334	35FD86B3DD082A6D4930C67BC0E05D3B5817465A	525A857D0EDA855A64D3619DF58B1C2D013A73E60FA0D49B155ECFCB2C134C7C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005T.bin	data	3E0039E45E5DA1D1CD13536353EB0F76	948F80B69C4AB7CF17B32BF89BD408D18DFDBEAC	116143FEAB05B3527E99A93E72D427B1ACC54CF5A2A46AC80F244CA0E57D584C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005U.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	1271B1905D18A40D79A5B9DB27EE97EA	9618608FBD7342DE6C71220A36C3F4995BA9C13E	5B321A4D81BD499B289B1755F6450A42047C494DFBC112DBD56DA4CED2C15C1A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000005V.bin	data	E3C64CAD23DA542C49AF8D0F85F41380	DA084F73BC668967DE6A1461D3D2CBFFC26899BD	E732C25698F99F943F0C35E0A1D5DEE8437114E98A28A752A3B90A98A06D2EF1
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000060.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000061.bin	data	E1049B4E36636BA37EA4565EAFABFBB3	04D6F6F7DF6C6F6B68148A0B77FEF117BE8440D7	BCCE8CB66D31FB92CEE343B628CB33B34270C654F1B7764012015B9470C9E525
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000062.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000063.bin	data	CEECDFAD2F471D38B9906F0BB7D5DE00	4988E7E52A5CBC1D156850AF568A47FEB23AEC37	5C058C43D01089DDC3200EDDCA53B58B32752CD9C093788518957B875E5BACF3
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000064.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FEE4785DF76E93A9DC2F4501CBAEAE12	8FB4527BDE05EF208FCDB168098A07707C27501F	F091DED5E283AF6848670A3172E7C43C6099875D39B3FC69C2BDBA914F609602
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000065.bin	data	B18F94B5BF7BA2446E708E2190129668	AC6696AB85238F5B17358E4D9C8A893AEC2FD503	171AE3E1E857AD01267310FADB6C12B65D4FA2DB9530D4BC2772B7CCF7CF5F4C
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000066.bin	PNG image data, 85 x 470, 8-bit colormap, non-interlaced	DDC3CC30794277500EFE4BC6667EC123	EFC9642C1F95B5FC38764476AE481649C016FA0C	7F5B660A1A0BF46C75AAF19B4F77A0E086DE003EC03AFC1F58D871D55AA5BA9E
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000067.bin	data	4738D4AE44B152AAAFA52752A06EB16F	CFFC35AACFD3AA0173330E2ECAB8DBD3C4CB0B45	566FB4D6D3189FDBE61E1BA3EC867E474AA71E92E9E99A23AEECBA502298EC0B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000068.bin	PNG image data, 88 x 574, 8-bit colormap, non-interlaced	1BDAD9B3B6DE549162F9567697389E1C	5D9C09159F07A3A9BDCC6C4B9BD9CB72D0184E6F	0908A4CFA23F93011176D47F45843E9CA2973030421996E8E27484781F54B0EC
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\00000069.bin	data	6D32A3CF9F6A51EE151359796FA7DC7F	5CB033F92B34EAB92E4773A899577EFD8D4D8B11	73121031D067E34C85EA29C98202F2196BC6D4AE079367CA74C91677A8032B46
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006A.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4E131DBFEC5C2462273CA7B35675B9D9	CA037F444D819A118AC37D7AA3782B9BF94C1616	2A4A3530D652E227DDD5ADC096A95F6034718F7C380B07DB622022D768815059
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006B.bin	data	D96FEADE3D8EC4547D14CC3D38AED13E	52FF5C8EEF367942BADFB18942C3336B2333B9F2	521C45C827A8361A114673A13C24EDD8C053130F01597114B4E80B6D6BAFC06B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006C.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	8D804A60E86627383BED6280ED62F1CF	E23FF14B10AD0762DD67FBA3CD6EFC85647C0384	494547E566FB7A63DD429EB0699FE41AA8998F8EA2F758D813FE3D56C3075719
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006D.bin	data	3D58DBC63D959A61A0515F953754C1B0	D683870AFB0B7F752A1C21A25CBB713EEC78FCE3	8F73E0BF1B737DC38212E74FCFE30DA7884406743829DC6A385B225CC55DD938
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006E.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006F.bin	data	8B22372ECE4DB3D2F492C7BC85B64678	C7DFFCCF20E2716DE50EAA217EF3780ADED07EFB	8AD8737E2EE65B6C089E1969A68CF93419F08DA723338DE0DEF74C6EE73B7D5A
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006G.bin	data	856B4F7BCAC1A2602154A4DE47A684BD	49890C9BF23043FD0FA58FEF9A7539412487FEA6	572954F275930B9D0AB02629A1937B1038C6E1F69D7484793DD3DBA4DE8F98D7
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006H.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006I.bin	data	007E5542757507DF93FDD6C1A2B4229B	AB29C4BA945CF2A2BD6FD12D63241D0C83BB277A	73821E117BBBC4FDD9BF368F11C68AC2EA1BBC821B89EB9731B09E311D218DE0
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006J.bin	data	E31E34347036070BFA14CE2946588249	6964B6BE6449A25BDCAFB00F1E43754B9B670264	268D41BC26D92EEEAE2EB30E247A6DE407B09EC279EC5876F6700241F3A98254
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006K.bin	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006L.bin	data	A55459C4AD9AC5DEBD4B0B95D1E38AEA	6B9338DC27BE49A82B440EEBB662C216E7A61817	C810E72E73062AB293B49FDF03893EA9610447615801BE6C06C0543E64568BB9
C:\Users\user\AppData\Local\Microsoft\OneNote\16.0\cache\tmp\0000006M.bin	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\089d66ba04a8cec4bdc5267f42f39cf84278bb67.tbres	data	2AAA16C4ACAC141E9B72B73F24BC57CF	C04F8F55BADC0AED5DA7B5AC729E015143C88ED2	B6F4D4182D37119328091FB860C63397B1F2FEA3030842EC56EE9F465CEA7C63
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\5475cb191e478c39370a215b2da98a37e9dc813d.tbres	data	909ECC871FA61443923C619D6F948519	00DB20ECE67CBF51B3A652C397F1D94D4B73B534	6EA708175FDA5C5C4316CDBD1D0E6CF4713B507E8BF85918463B664335A50217
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\56a61aeb75d8f5be186c26607f4bb213abe7c5ec.tbres	data	F565DEC77678AC91FD0DDE818FAB4869	7AD7450D264DC2DA9C87AF590830657FEA579516	69BF9EF2BF273898D5D0409DF5000BA14C5F727008B0690AD5997ED692AE332B
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\doomed\11719.OC9oMrMV8	data	CF427F52C19CEAAB25F64DA9C36C9E67	6A5A89B502492F61C65BD37815480DAC5EF1CAA4	CAB3DBCA73390725214926494056869A81196D95A14ABC737318A857EC77336D
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\doomed\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\037778A55E1B7E9BED3390289866D09402D6C913.OC9oMrMV8	data	C6DEDE891934649AD64DFEDD1E45C438	1A74951E8AA90E7F76BA11A450A822B4872F9A42	479B5F589373A6E2F9A0052DC9A5AA09582BF3F41E47B48D1179481B48E782D1
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\0A25402A40000E9317079EA989FBDEAB10234AFB.OC9oMrMV8	data	4EA34165B33EC118DC18F79045084AD4	451150D7EE2BEA5216008AF09C8F9E2B78661C74	9009DC83DE79DE6FAB5608C65036113F372E6420D5C3941FCEC072FA0944F4F6
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\0CE0F034E77EEDE612100CE488EE967637B58DEF.OC9oMrMV8	data	682BA5BD9DA71EB66B08374A714CEA50	8D3AF3B48058BCAD9C5294D71CA0F9362860651F	C17CA9423778D9BDCD66BF7E11FBDB2794789736198A208513EB9F97D5C1B43A
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\0E22ADF4ABAC508C15FE8241CA5B0D2E6152A063.OC9oMrMV8	data	5577B30A163B1484BE6B317AD365C7DF	3B904E03E7157E6E87636803B539BC71DADD11AB	A07998FCC34489EA70C60C5C4830BBDEAC98662C00589ACEE23203A5B8166700
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\109D080055C1548CE320A422FD98DA1D5E1A5BC8.OC9oMrMV8	data	8F6F276DAD9EE0F32E301197B742EC63	9CEAE1C8FB29419CD0868CC41EAED56F10FC4CBA	866C8714C586230B620795E24F27E17C5AC2C63A13E8E176E4FDDD266F7B03CB
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\180089313729568CF6D0CAF9991F0FA4115478F0.OC9oMrMV8	data	EA6A13F704F36778CC68C920AA2E7FEC	BFB265175D99A94E178D3C2448823C62A3CB1939	87D16B9EF08167F733E9B7BD62799C91910D629D3B01C25A69F178082F3B6DFF
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\2275F9569F28969C8FC69F9660A75ADD1F8B963B.OC9oMrMV8	data	B242E43EC45AD1C9D1CEA0B79AB95E60	E7CD130C2AE073E569129FC55377DF734C1FAD79	9FF5BE2F6C550A4A83E7D2158A8E5D2CE9B21E5D36D8B01FA24F12E9D0950EF1
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\22F59957B7E08CD6CCFED6AF2A1DF26FE157DF40.OC9oMrMV8	data	1343603ADDC2688F145FD05ABD06A6A7	DBF5CD9BA77754425AC3962C9328EBF7111E44D4	84C121E9B24E85A8A35147C43F999242644E161E832A2D0429ED73EFC692775A
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\252CE8AC445A184A1F4A1C6C6D4ADB8AE41B7776.OC9oMrMV8	data	5CC8C2734E5034B2185721F32AC4ABC8	3582FC9CE67DFF92438FB186FF218F8925FD2EC4	C0AB9FACEE4CC1E6C7813818BD2833873B267186145B81502F7A745EA97BBF63
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\254256B27E0C48CF9B80B695F0B3B8CA84610495.OC9oMrMV8	data	314D5721C43BA59286B30D4412FC11B1	6FDC852DCA5D056ACBA35DD97D9993A83DD6C50E	7C5A5F5256C37D0E0415579DB8DBF0A9185ABB30D5C6D5C0B56C3EAA5BDD1FF3
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\271A1C49BED899C458958AF0EF8DF3DE9353DBD2.OC9oMrMV8	data	C4E90089A0840BE8DBA89CF322FBDBDC	15B904EB970AF5B33797437A68E44F044B056517	547C9B0CF619ED2FC65D53FD30B783F13E7694A2E9D05A53F98E374C7E755245
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\289DBE90018D682BDBFD59A3CAACE9EE538234FD.OC9oMrMV8	data	EB5598622AF6AD099A31BB73D1A52358	117A70F51F477D861E9ADA4118DA5F027C6EB797	E40A1DD5A15500CEA6A6B576CC3138D8DA75ECFBF3E1ECD1DEDCD08D87D47997
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\2915993ED9338054CAC5EABDFA6736457D96F724.OC9oMrMV8	data	7EA528E373C9DBC6901E5607594D9138	21420D8B273130F3E698A4F5925326C58EE5CD2D	0DCB03AE1C648B1385A159A0FE987CF0621F836EEDD78CA0F7220E52A5D7D4C3
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\2AD645B73AACEECB546C581E5E777B2380198A3C.OC9oMrMV8	data	C8D81DCD3ADA42DE4A6EE9414820C23F	C1E8BD46FA6A68FA878FF7CE9179919FA1CE0F26	041E8E306EA340A3FF5A3ED89ECA55305DCC762CAE548C1A381C2F2E6AF3521D
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\2B8DB5289EFF0A466C21F47412A322A36CEB5044.OC9oMrMV8	data	52DC94BF84F78AF95065F63A33C261FD	31626F1329F81FAD3F2B403C9F70A29FED56098D	36EE9DC141E710A0EAAE273CA34440F617DF31BC667DE86E4962A26850D97F9C
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\38FF788A718C79DDC3D1E23EAA975517D9BA3BB0.OC9oMrMV8	data	D4C12D3ED52B8AFB1AB38905051EC1D1	7ED9F8754A606CC15E0D2824976D2A5FB545101B	62294F47277A0E0410F9F246665D89DAB3440E66CA450A9F01A56CEE11A3E594
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\3C9B2D192D535C347CDA9FB12BFC88FD40CF0382.OC9oMrMV8	data	2E7C0702309A15AD124E0BF3CD166596	930371FBFB033B24D32C2BEDC46D8A0FAD3DFDBC	EADB69EA8B9804F556368500BB15B66F305972676E79DFD65F0744A142E47319
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\3F5BD2A3838305545BAF11838A20DDE8D3F6CABE.OC9oMrMV8	data	85D212902F03CDEAAD9800D9AC561342	53352DDE3217E3246B3F375F1642EA1BF3740599	6A2EC6B2D85DB4CE74482D21EBA9A4AA6E17F6D2A5850CBC8D354F21FF41F772
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\44230749A38B6989F56217B435A03E84CCADE62D.OC9oMrMV8	data	155368532D2F40AD2E32DACBBD7CC8B2	9F9B0BFDEF5C125620C82CD2FE658CE179ADD339	661E51970106D60EF7880D3890E3BABBE58B0F6C49471CB2CEC1B9322EE2920B
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\44F3556BE808F99573969118A8E36879BA1ADA6C.OC9oMrMV8	data	41C0CBDC4F9F24BB4711C403F89048E9	34C4E07C2FA9487B4388976D359194C7B4D8A151	6B03E99F610DE02D8F933A4A1DB10BAF9FCF01AB53E113E84D832358C18C0B3D
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\4BEEB42810BE832BBA91594E58C616495F4E9510.OC9oMrMV8	data	59B703E9F2644C079557B47B546C5A03	AC8D225F0915553BB45E5E9B5AD4A9E641FADDED	D06BD661C0CD5331E1F2C9B41916B22192C134273776E9E0D869687A8C531939
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\556841CC95159B63845C2D77B32754EDDA4929D5.OC9oMrMV8	data	CD5C0760FF076D740CCEAEDF5A5E9DAA	1D099DE6AB063DCE6491529A64ECFACC8A5B0628	0BCFC94C7C18D3D98862359C1AE0F912E5A5BC5B908019CEDC97BB82996C53B6
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\58A756A796A86993036E1F0F79183245EE2ABF58.OC9oMrMV8	data	5291D10A82E25EC8469CB58AA6E69EB1	977827EE3F2DE76917E69505CD7553CAE872CD98	095E00931F0B81522A03148BB0328D9EC9BF83FC5A028E0055438401168B2A37
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\58FA4C93D2C2293EB9F0554BA83740A06674316F.OC9oMrMV8	data	8FF99AC514247E97401F5FEFD9458DD9	BC25B42A2F0F5F682C9EB8FF3BB4BE94476F0801	5BA7C1106445845E8211C967CCE0F0BAEDE8198018F9647891E5B6DA7809B2E9
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\618AA02AA865814C279225AD803155E0A84FF649.OC9oMrMV8	data	F87AC4CD25E07E5379FD1FE9999AE03A	7D3E9C03039317E478894ED8E0F18A171FCE1FAB	8DF2D268335ED3046796FA8C5992C5843265149549B8ECEBE553C7A7BB586BBD
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\62FC1E8DCE1991EEB55DE9EFADF47EA578A22AB5.OC9oMrMV8	data	7043B46A74002CDD7A5B6D11B97EA541	721016C45A1B8DC7E0364DA4B8A87EEB2FEA26AB	BDA0A32285A75FE42485B8D318ED41DDB226A394A6C35E94DF2295169FA0994F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\6471FE741131F408228B6C4776946BF7FF3BC4F5.OC9oMrMV8	data	4A41357BC41FF1D71FB63D37CB023298	E77F9431C925E95FC5E57286DE262BECF2075D56	B296B646794B3E19E18E275DE819EBC68A35309A773267E89EC67AC7C25ECB60
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\65EE852228DC3C1F75E39BE7FF19C11BE9B76C85.OC9oMrMV8	data	CBC6249F5C77A0E463879BF618756CA7	99608820041A311FF12C0ACAD2E5077AD9118724	9C64C305D4D4322FC561FF063A000DCD40676CCFEED0562CC028770E291B489E
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\66B74AA167026A3DCC4BA7064E8D6E229DE9D806.OC9oMrMV8	data	CECD6AC0108347BC6FAD712B19BCBFD8	E343841C5A5C74E19498CD2647FFD13EF5260FC0	4BEF06CE57378F18C50E3F94083D48118B27D0A5D18D3AE11E5833E1AF758AFC
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\6762E24BB9F66A6430B9C774503510453B4EBA21.OC9oMrMV8	data	E368BB470E2F325DD3630891CFF27061	C3C0DADB5A4DBF976251E140CA8A0F6F97103AA0	7A99C586A1FC175B84649FE701EC41E44115BABE5B40D3FE612EAD17567CB6C5
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\6D89348819C8881868053197CA0754F36784BF5F.OC9oMrMV8	data	4E11C04F1D4B6027E44F866AF834376F	7E536AF2E5DB78D4CB526490BA7925F5547E56FD	B339018A847E9AD9563ACF19FC97BEADF934079C8A76B5C0FD6CDFB52B1F0A42
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\71F4157689DEE0CEB59F0F4068C20E9A259EF1BE.OC9oMrMV8	data	097B764F530FDB720A08FAC554BD6865	5211DA8AA3E39402A64413FE60D8952CF07D5681	B01D8F737988074FD53B4985E42284B76F3F3FCF680E45F6EA363E6B876BA851
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\7DB3359FF1AE28D679D8DE03A74F2C06BC18D50B.OC9oMrMV8	data	D7E79DB969F2E2B096669420F24754B3	BB0680C566634204152FE4AE2A62C983301E774E	9B8468F5D05185881F41FCDF4A573D24639C2D702D2A852DF13ECF3A4EF86592
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\8226E2CB0DA57E2CE8FC06A4809DEFAE864949A4.OC9oMrMV8	data	E07427FE8EE3DDB1406E98AB66F1C98A	54AD3F5733EE770C9272936E8C4267955AA09127	213F6B2E21C453739B6977ABDF8CB3FB8C95B7FCC2F3E2201D11CD5AACAB0F62
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\882F9563CBC46021B7E6D26FF3A6DF8B530A6906.OC9oMrMV8	data	B8C817760C6BB984F914268FE88A0CF5	BAE25A51A19BEC76DAF35672B1FE94E8D82A712E	39A3791A5DF2B590DF86AF3E8E4F3918BF06A165619CB0A45E325F8DD4006B4F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\89C9B59023C6004C5FCA8E641B2BD533BAA7F06E.OC9oMrMV8	data	FCDA52103A411640A1AE86DE01F2A63E	0E95D738D4F244D058AD6F9B6E9DA3A6EB5E72C0	9DF61D09D03988ED9076EA8E2BEC2FC36179025D2A88A820AE6A3BCB59D871E9
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\8AAC17E1FAE55EE2A26192601B20CC4472AF5CE5.OC9oMrMV8	data	A1D12F733FA586C0520CA205A5685898	069546F1D3735B7E5806848159318F7CE0D57F07	CAF9FD0563526980B9B9C255403238CA0FDF2FC4C2F24E816FCA597D164E384D
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\9648808B6C63CD1AAD97A7B68F84F35C95682143.OC9oMrMV8	data	1FAEE9A91FC5513AFCEFA7D84136D7E7	5FAE2ED1042977A3800044D674BE9B338217D4BE	75839BA08F41E24D54C3FB7A1E0BF39DB095D668A5C8B84D3BA41BE2B8F74C3F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\99B7BF8F4F0080766794EDBDC37140FABC009DF4.OC9oMrMV8	data	2095F4A171277F35489D0B384ED8FF3D	9ED6D9464407C9A350F513384C21668AAD62E38A	F553C0AF1D8A555F11097D7CD3A60786C3FBDE8802220847C55ACCB308681326
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\99D01D160AC7ADE6301F3559541FEF1A6F6155F0.OC9oMrMV8	data	987D973884FC325D08082CF2674B4560	05FEDB1E70DC58EF66E11F2E1C4772B22B56F7EE	5009487D0E258BA84283ECDD9C72E0D61C77E420EA1EDA4F4DBDC13A4A1F8769
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\A8743ACDA513FF27A72604EA39BAAE662138F0B9.OC9oMrMV8	data	F90884716AF387C0EB2CBCA6F6A950C7	55F16C308C1DE2F19DC261421A1AAD9304A7036C	9F69CB77E813A1EC5FC9A058BA89CF79B9BA2DAE34FEA9406C0D3EF9FEDAF8E2
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\A8F5B51786B52AA4D75E21BED0B23433A7965AD9.OC9oMrMV8	data	EFA103971C159EEBBE7CF7B6A1C371C6	6FA92AFE2DD4570205FCB4E2A45BC986CB0A57BF	708BDE7A3B3F8789F16B4B3A6E8F737C35B790105D6337695677AF6FAE1E443A
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\AA70DA0EA77AF599D16F76E79A98272BA138060D.OC9oMrMV8	data	95BFFB9EB9378B2BB9960C8AC9236836	51B376E7540A7AA363CF05D442D271CAE00510A5	932BE95BF68EFDFBC572288E276F2D431621CE1FDE6B4BD4B550782C2B7008D5
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\B964525B23D45DFD792EB4662ED5DFC78F8C6246.OC9oMrMV8	COM executable for DOS	61D84A60ABD4F05F8E580CD1F78391E4	BDA7DBF639A44B1E9751000C9DAAA3A0BD2AEF16	4833FF20AFDAF708773CF9F93F532D0AB7059FEE516BE2481989CFD3A3E18C65
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\BDE5E55BCB4604200C70FB908FA76903C94590D3.OC9oMrMV8	data	45C61A622D4A60719B6965850932D514	BFA275835A00836D6D5556E5962878ACD56D14AD	7A5A9D7441A580BA17FC46F93B9A564ACB3CFBEF12F8786781BB38C348403A9B
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\BE4820D40B48E7D6E96297A9048EAE2279EC43A2.OC9oMrMV8	data	7C65AD9F97C130AE3440055235DE44E4	B68A785CF52F0FACE01F792BB41E9620811BB643	817E9C79DB5216111B2E7A829CBAB7DA23FCA987A37FD5F232956AED534A7A7F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\C26B0FEA6AFFB80A0EE137492C8CA100F87EE29D.OC9oMrMV8	data	3D5D1421CF9894EDEB652E9D9DF88002	8543956E87F4FDE8548729D05019C028864581C8	995BC12F15EA3EB807FD038E68DC7A91C0520801E7770B0B649650205B210BF5
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\C29C07F946FC89B4DE10A21D8C6975FCEF3E2E39.OC9oMrMV8	data	6E15CB3AC3279533ECB13E9194A3DA16	B1439A03B37ACBF468A716A46144E9B3F12D17E8	B8500DFD59F9C1B5D35DBA747B24F03596BCF8D092E516FAF199C45F0BE84DE4
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\C2C43B688238A5FDA9ED4731822C4EA8F055F683.OC9oMrMV8	data	815FF83BE1BEC8713932474F46ABCC4E	4E0E7B7B87144F3E31C28CD7C2B33194FFBF1CA4	3B4D9046707C708EA8B334848154FEF8EF04A839B2C70D680E79ED9571AB6871
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\CB58BDD87AB882DAC5784A12AA5FB3DB8E4BDBE2.OC9oMrMV8	data	15BFC42A663766A4A45B4730B1BEB423	5B5FC06A99CBD264E5370CA2395CF673DD353D5F	1E62FC689EBDAF6D4297C1CCA448A52B24BEC60FCD57AB7E48A20044411D32D6
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\CDA62003B1B987A64F1FAC75D1484DBFF94F08FB.OC9oMrMV8	data	86960CFD9067D0880C49372F9390B5BC	E7E3984B0B28B7B303DF08CFA97AE96CC989C0F1	019B01163BE27E8D38A2A1E8847CAC091D6439730CD6FA8E75FA85B9684FF3EA
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D0F48A0632B6C451791F4257697E861961F06A6F.OC9oMrMV8	data	D4724DFB34B756FF8B6C5C7DD21BD8C7	5032B22B5DEFC0F434B8171DB204C6E410FC4C46	086C3E223A9B576FC694253A4AF24866BCBDB5B5035EF13AE6CBDA40B804B4D0
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D23F7952044A1A6016B80DED46FC563716A295DF.OC9oMrMV8	data	5820CD87C7089995A43428313E892A09	0418A8DD59C7E30E6B114AF5A3A6BEEAADEB9C24	AA724D30ECF6851976D770B3E86982F9C6A2C36FB5DEE3A4AC9F0E62B23B369F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D2EC61E8A6DC6F6B45A8D35DBEE8A2EFC553F32A.OC9oMrMV8	data	A5CFBBAB7DE2D3E0752D4CED4DC27576	387B54BBAFC2137B102AFF43D473FD4A5C7C2743	445BB59D878A8904A6545DD04D27C5DAA99401BC6FCE53C1CADBDCE8D0DBB10C
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D6B0ADD0DAEA00708CBB4290B85CCA0E0FA79061.OC9oMrMV8	data	1A62F106A55D6F0DABAB1E8B43A48D11	994A5AECDEACE30A816FD39C36EE413050691A19	F2D875B8E40C73F1439606392CBA4A3A9280CBE10B85531D9B0987577CC6DD0B
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D7BEEC8C1D80E7AC7310130DB5854DFB79191F44.OC9oMrMV8	data	875F87FC94E1247435D3943650662E37	42F8CE26B3717BAC030708FDEFE895990AFF06EA	5A72A22D01DF174AE4A5B12347B7333A2A1F395214D5545DBFFA20F4C3EB60F4
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\D8EF12DD3F5A0B350AEDF5A0EBB7935D12C12CE3.OC9oMrMV8	data	3F3E05AA8FCE07E133EE7DFBAFC5A6F4	71673ADDD677271B0D898B99AD7FEE68A788AECC	8905D04FAA065DC41A578B4DA5025D05FAA0F1C81CFE1CF47473E0464B93745B
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\DED23BB33EA3C88FAD1C0A1CD53916E0D8C424D3.OC9oMrMV8	data	90807291B92C3BC77FBFF65F7635F9F6	BBA2C5E26B9FE58DD07F0AA56CF72A8070294236	A6BC02C6E47CA8C6FE10A625D8D2E3B51F422987149878CE3488A7F0217D6201
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\DF0CDE23AA0F44779E78EFEDFBAED16DB1B4DF40.OC9oMrMV8	data	42F9DAEE67A0099182252E880BB192CC	5617470A0E54111211C76A6F1EB3C2E13E9BF7B7	DF2D2A55780E1C2038A7C0A5C98C1B5FCCBD1F312243C4884A98458CCA9FD392
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\E673CA89D86A2DE6C94ABF57948CBCA43E7B8EB2.OC9oMrMV8	data	B936096F0CBB0E10E09A09C3397BBC10	E53F13BE576D5851300D2941492FCC23F80EA791	1A462AD1F20736FA07A05EA0AAED174DCC58DA331E33AF73EB0DA140469C2558
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\E707EC8A256322E87908664A49F800B7B48E0961.OC9oMrMV8	data	8EC34FD0674B5E39C06EE0DD02E2A6E0	B956C8BA4C290E206A82328630DD754F0D077FD9	A8837B06253DE2232E0565BD4F723F966BE9FB3547EE5EF0B34651F2EC95B03D
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\EA1E3132006CB34CB9058E6891C35B731B9C4D9B.OC9oMrMV8	data	41C60859EC412F2FE91024C7F6CC91B5	71B363EC9DFBD6DD5AA721A9D1EAA88C397F7491	77692469C663041A838CA2A51ED2137DA326D736AAB58C5659C18ADD07B3F618
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\EDE675BC5BD66B9EEBD8A46A4C06CC47C388FD92.OC9oMrMV8	data	32E8D63ED6DB8FFEAFBC5E588157414E	74A3E543A6B0DB2FDA7D1E9362B2157DC88BAD8E	A19C92EB6A5C57E527BC2EADC3FA21834B051B657A63129FF84D673576D2DCAF
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\F8CBD54DDA10F4286A41EC6A537240712D6C2308.OC9oMrMV8	data	4B59BCAF4D3AECB191876E3A9247DCF4	DB36E7B309CD07EC5CE72A58301C615B04F3FB6B	D50112E322B48A5C7CB391FD59ECBEF96AF50434E86DEA7B34FD5EE3264B589E
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\F8D5B76A1EF679D7E128B67E60239325BF22714D.OC9oMrMV8	data	BC03536F93A48FE8F0E95313A3C21F50	ADD40ED86557D2993B3567EAEB50A4860ED00D5F	D9BA29969E22B375D291922251A32BA28E983A0D7BBE622C95296B039004B185
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\FF63A96CB0EE05C4E8600CAFADA617EBA0BAB35D.OC9oMrMV8	data	8980A3C3EE3C23F38629659B713126C3	0CE3B14A746568A5332326A01A41736F07FA8308	0B9925795C53A8A7F75E547FF8F58E68D01E4740858EB762506C77128C4AAB57
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\entries\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\trash16598\13723.OC9oMrMV8	data	2E731F1C956A129795D7AD3E16B35705	FBF57D2315C1A78A8E4A9CA8FF66C63FDD9BC1F6	5FA4FEE157BBA40C69809302783D17D6088907DCD073260AD9146997F1C36DF1
C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cache2\trash16598\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	4CC73BED9B31289F256EA2319A4AF14B	252444E2DBB759E2C2E69EECDF012C48C6F6751B	83F878447596BDE1FBAB79EB05BAE104F674F906E20B166C63B2FC18742D5456
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MSPaint_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	0CE2C9AE35948F9788DF4AD1C5EEC6DB	0E34C65DA93974BBC912C99CA50715222E9C3C3D	F264F1D3272A74A944B8D803B3A5B6651BBD464064C5DFDDFE3BA659CE4D0965
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	1B7A1C6F50DE8070A58A5CB5DB8745A3	260B93EFCF93C0604994F85EEBB9574051F0ABE4	ACEA929F2E5B839E658AB66B7290D6B47F1D484D343BE45FF40F1881DCB4D3C8
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.MixedReality.Portal_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.1.7_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.1.7_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.1.7_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.2.2_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.2.2_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Framework.2.2_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.1.7_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.1.7_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.1.7_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.2.2_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.2.2_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.NET.Native.Runtime.2.2_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	OpenPGP Secret Key	9F8779D09EFDD06C500E1F626C661005	004B11CD98A3F5AD368F40DC7238535000F7FDD7	09BBD2BCCC2D33AE197E9BA75C864A8081BC8B103349739D38DF1326048010C3
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Office.OneNote_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	373CCDA466F5F4ADD50401AE4B928BA8	7E9980191F6CD2D3763BD1593ACD53BE10BFB64C	6827A8F13AD950F823813D6F17792743D2A681FA865B6FD5DDB5C47074DFA3BE
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.People_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	75D4604B8AF7FD7AAB8935259EA29BF8	C9227A6D67D47417ACC883BCD9CF930B04E7EEBA	BE5E39CC1FBAE75ABBABE933D93B0E7ABE562000E01B10862D4C4EE508857733
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ScreenSketch_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Services.Store.Engagement_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Services.Store.Engagement_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Services.Store.Engagement_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	9196362A30207DC5175D7D5053BF3E84	8491D2860155AC355747015DEE2B189B97690C93	2646B3169560FB23D5C97638D1FF6DF6EF8E25B31B1FE100A4C6C1B3DAF51ACB
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.StorePurchaseApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.UI.Xaml.2.0_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.UI.Xaml.2.0_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.UI.Xaml.2.0_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00.UWPDesktop_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00.UWPDesktop_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00.UWPDesktop_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VCLibs.140.00_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	92E4E946D712361EA1B667FDB2676884	08F1FB4D18A6A567AE945477573BB67DAB00EFA3	B3D60A6562E3EE333F553DCD9174D45F9486AAA81AA0E332194097E855A2AC64
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.VP9VideoExtensions_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	DOS executable (COM, 0x8C-variant)	BAD61C00D013915A4D2A3A5EA6FA4D1C	DC9ACB9E388F1B8EEDC18E57DD4F77B5A9F32850	F325A7AFED8FB5DE92EEBF44B5356B81E0C0D45A8C85DBE9153A608826709225
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Wallet_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	4AC6605E996D1258BE5E2F951DC6AA33	2CDA06CA4899AE8978891AF612073F845D0E134C	38A84E7C297E0783A6266701E35B1350FDB354279EED8B4917BAC8C23FDE70FC
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebMediaExtensions_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	F821D81330B9D9D34CFE7B6A9F497159	7F64494ACB47B095EC033F47E829DD7453B8B019	D3AAEE94D9F1A0A4FD729DF92EE8CD225AEDAE1CF67D9BF29C0D31437B133907
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.WebpImageExtension_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\MediaDb.v1.sqlite-shm.OC9oMrMV8	data	10BC04E25B3A9E9BBACAB9128A33DBAF	18EFE1062D23D76B297FBFB1B3BA7703CA14045C	54453A507B3B7BE0BB69D90FCA8CDAB734A745D1C72518AEF49665FD5C5C8CA9
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\MediaDb.v1.sqlite.OC9oMrMV8	data	389B5244050BF639FAE5735C2496CEC5	66CDBFCAC8019E4FC71E464F333225C84A3097EF	7DE8ADC34B6565863CFA269642AC0E6AD1976F0826C63F4ED20D816FA332EE69
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	68E7477A16BB3A3741C101D0A8BE79C5	AF7F278918BE83EB9B1E4DBD7B717AE823F85983	D82286A8A4DDF7E13FBB692F7E3E08AAD3F4244F0D48854614C67455F8DFC21B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	F297174BBD6DD42ACC6B5D101D6621A7	C004AA1A2C8341A135D162D6D30673A22D628FBD	7A4675A717D33827C626F89947F4D43B6AF69C79B6F9B9CD9F7E7F4244E90B8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.PinningConfirmationDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\Cache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\TokenBroker\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb.OC9oMrMV8	data	B9E84D018616634F7708B6C0E82BFA1D	75747158C2422B0C80906097272B4AB1C5CA9A5C	40E5CECA8ADA63B559F0D3DCC61953AFA6D808C44B983E3CE62261F99B8F7BEF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm.OC9oMrMV8	data	EAD6D585C1A14D45B16360EF45FA0475	30F5BDFF5426D64A6D0401167257524BC427AB79	8E70EFFD672D358D818833DB6A4AA64EA9C9E73CA15B791F27D37D2E1B497A51
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb.OC9oMrMV8	data	535BA3D97EBD23A7A2A271DCAA07FFB1	D04213ACD73067623C359F78915CBEBF1AB1341B	090B4B79586D0181F60C8EB6F882CB5A42E3C31D2067F4DC76E291D2B6E444AB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.jfm.OC9oMrMV8	data	C9E1E6B1BB1809159CD50F411BB1CECA	D4AA83B64EBCE95A7922075FE00FA09EEBE11C8C	0F6FC8D99805B31F16986FC8A2B124026E8B2D292275F686AD666A8548025417
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edb.chk.OC9oMrMV8	data	1A29508F651CF1303D108BD11BAFB0CE	57629EE0FB9F1602E28A01DA645943BCC6C2ED9F	E69686F25CFB9636302E56CEC089706E9EB23399880A18A9D765393598A51409
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edb.log.OC9oMrMV8	data	0C37106215F06D973719BBC9DCF19366	6D21D4774132BE316D3909066D346F7986398A7C	82B6FA97A9F2C8817D7FC6F344F2ACFB8904A14F5348555A69EDFF0A543D66BD
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edb00001.log.OC9oMrMV8	data	FA78B6B9A656BA6613F13C2162E026D1	3012929D0727B6549ECFAEF85366FBF21DD51671	F7AD7D364DF2020BED5B42C5F0552D94385702F9A1D29028B757363E908A1BAA
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbres00001.jrs.OC9oMrMV8	data	5D54FD3B1AC5DF6B22E5F9BE68D5FE97	230EC7B8EA8CB304FA96FF530A8EE4BF0A67D258	450F79349CC8944D6713F06DDD772F22582A46EF2CCDC0BD29CADEB32DB4881C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbres00002.jrs.OC9oMrMV8	data	06C3097F20219F75A8EFD3A713FFC17E	EFE13B1AE992F5C3E532CA77237D19AFB98C076F	D875D18E75E3A1E24193FA6F8DCF4F60FD35C555605E0EC7012454BBCDC2E4DB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\edbtmp.log.OC9oMrMV8	data	239D2D421FFC781A5E3925AF80F75769	39F196431ECE72F46E2A42D251077A4B9162CD82	139E5C633EEC0F7D6375088DD6A3EC2A202D41BE717643373E0F680574B1144C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\308046B0AF4A39CB.OC9oMrMV8	OpenPGP Public Key	CA7E52DCED842973E71D95F92B3D328E	4E1D371F20B9C8944A29B470FE08A4AFEB8E4F2A	FE90CAF67C5B8CAF8F4C5DE93DF2AD7B4F78409B8648B30E92C7C743822A5FDB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\308046B0AF4A39CB;PrivateBrowsingAUMID.OC9oMrMV8	data	A00087119F30228956CB4BC8068EE2E7	12B99A33CB9C3E53942E03A614213ADF6F308B0A	0CABDC8E637EB3D8A13F055A9BA395344C65B84F6EBB9111AA8C9540F514CAA9
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome.OC9oMrMV8	data	F02260204E7761E28254494C1157C99D	6BA899A3C7418CD57133A058255E043DF1AB204A	1384F640A1410C6A45255FED5C74C02B7ADBA2EFBF4FE241CCBB2CB21B6C6022
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_aghbiahbpaeidepookljebhfak.OC9oMrMV8	data	39A7EB7CCF2CF7A3D497675C77D554D0	E93FC7B2E1B2CCEDFF6209C41305D9307683945D	DBBD2EC425CB1CBE8D80EAC1D9D701C4090DFEEF6457C5B9290D4D73E930ED7C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_agimnkijcamfeangaknmldooml.OC9oMrMV8	data	461E9EA4D24F4C2714B17844EAC476F1	82626E50E36419889AD884044D34D03337895431	10BAE27EFA28E68DAE4BF1FC72CB0248FB440ABCC1730963D0C8ABF40649E512
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_fhihpiojkboajapmgkhlnakfjf.OC9oMrMV8	data	BE75CCE160FE0A115D5AD03427CC32EE	C84AA2D34FA20C65FCADBE0D3A4772243E768037	FC12F9F393A2F7C2DB87D3A1F533413F7B71BF37BB87C30027C52F5EA7A433E6
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_fmgjjmmmlfcabfkddbjimcfncm.OC9oMrMV8	data	A8871EDB9E6C707F87E3C74B9593DD63	98DD277E94798D081075796C5D8D13B2D40D08C3	FC593FCDF9B62683B29DF7029219D366ECC6B889FA70FA04EA67C3F7781F37CD
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_kefjledonknomlcbpllchaibag.OC9oMrMV8	data	60CE607FA30296032610B8F853FEA01B	6E0331573C32F8AE4302826CE81C13F83CF359AC	294199B88414BEC7E18FF003574AF9ADC103045D34570FBF952D557D8B1F9012
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Chrome__crx_mpnpojknpmnjdcgaaiekajbnjb.OC9oMrMV8	data	E256D206684A32A093DAB9336337C90F	18378DEEC96FC0C2ECF99CC073A50D1482EA596F	A789218311420C975B0C3FAF1A671444A2DEB0781629A3F11EE65B867BAA9376
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\MSEdge.OC9oMrMV8	data	5F124AB951FE333732D867C6EBD7F9FB	0DBFD860BD6DA2BAE9C55A3D8948585914994B83	CF9F203103642A9C0E2517B93D03FC7E9A92B7D0770D30025203D0AB6678DE3B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_549981C3F5F10_8wekyb3d8bbwe!App.OC9oMrMV8	data	2C2FD4CA16A6DC341D700E51ACCEEC14	5C5EA53C77BA2D6FA9A8D662E44F0AD297D8F27E	5DF4C8925E71177270A8F5286A75C8C5F74ECF8D4BA1CC1F3800E66541F0E01F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{116229A7-9A3B-2078-DB5F-B5A20811242C}.OC9oMrMV8	data	274C0DCDF767FF85F445E4E5CA2022DD	B7F87472FAF4C61F361A9C9F7D256CE74EE56861	85B8BD028553FC5B49AA1B693D10A8CD38579242FDC8F560317450ADA6807171
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{16988324-21C9-05B2-CA60-9B4EC72739D8}.OC9oMrMV8	data	676548A070DA7D69DB501C1BB28C6EB2	A5CDEEF8CD29DE204B19BB51B270C5F9D2A4B7B6	151B10F987F1849161413ACF9F922D45EB581616C1F2904DE1AD34627B313EDB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{8AA47365-B2B3-1961-69EB-F866E376B12F}.OC9oMrMV8	data	08949F3235442DD7F3F236F7D94D1C6D	6BB51C4781CEED812F242DA2B1CC1F407876D186	F7C4D527EC52A746C312251F51D3B54C88A641A5B5C11600A8B768C3E49558C1
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{8ABD94FB-E7D6-84A6-A997-C918EDDE0AE5}.OC9oMrMV8	data	B82A770DE82B0EA61506BB1AA597EA77	B3E3445C0597BD5EA02C9036E48EF51448D3615F	5178E0B442D666BA289F01AF6AEA0B978CE0A87201642AB61090CBF65FB05831
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{923DD477-5846-686B-A659-0FCCD73851A8}.OC9oMrMV8	data	257E0376D4FDC60D9F25C6599DEE7761	A026B0A73DDB266A28B5C7CF58B14A7A963A4948	14C1D7966E111383B1BD9D78B1969C2356C9A244C0649D90401299DEB2CBE262
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{BB044BFD-25B7-2FAA-22A8-6371A93E0456}.OC9oMrMV8	data	77AF47AE08BD773F10C3F798F3837C5B	A6DAC2B3F9FB7306704348621A441486AB14D064	BA08AA92D026DBB36DCD4FB1581A6F95D9E394BC369A1AF8DC72F6AE5C756905
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{BD3F924E-55FB-A1BA-9DE6-B50F9F2460AC}.OC9oMrMV8	data	8773C2F3F08ACDC06F0D5793B7C8ABDB	579EAE241C5313DCC5DB662E5CEC2EAB313629EB	13E884F76CAEE8ED46EBE5F237758430B7C3FAABC6D9AC8D4597B615182364ED
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{C1C6F8AC-40A3-0F5C-146F-65A9DC70BBB4}.OC9oMrMV8	data	0965DDED0B9822C423EB110B72E1A872	3B931B78F4B00CB50E89A55A72FABAEE72F0B38C	BEC879F3B742B255C97050D5E938DD0EE78F076FE705562BB98FC90768ABC1CF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{C804BBA7-FA5F-CBF7-8B55-2096E5F972CB}.OC9oMrMV8	data	3454280FC09D5243F35D3AC9832FC0C5	69AA6E59F9F11D1F115DFC04ECD974A21FC43596	B587239CA3CBF93E054BBCB76D4BC10C481F149359B97C6F63E69B6AF48FCEC3
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{DAA168DE-4306-C8BC-8C11-B596240BDDED}.OC9oMrMV8	data	63DCFB1BA0C5E8A2E02DE3E08858A540	5495CD433686800C985A932025D0FBDC27102853	023EAB6FF78F0BF387364283C74E57D6D799E2FD1FE30474F972DD3BBD484812
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{E7A33582-E908-3379-5368-5999454DCD83}.OC9oMrMV8	data	3C8F7FEAB3C984AF258105274281068C	C555D3B345C47B8BB28232F2830C74780DABD03E	15B969F3B17BB0DFFAB376EA61917813E797127F9249B7477B2DDB4BB45FE70E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{E8B84CFB-B069-BC13-F88F-170904F645E5}.OC9oMrMV8	data	131018B1F20E87C4198E30727C0EC10D	E7B6D42A33A1868642A4E8B96F16E326E80D83CB	3E7EE5C5E5BA1D614CD73207E29396AF9E3D086E6D74E5C19D9235DA26069F58
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{F1118828-A0CC-5FEB-85C9-DBFFDF98434A}.OC9oMrMV8	data	8CD400DE04D0EECCB427A34C443DB4A6	170FE5687BF48BA493403EC0E9BC7C484CF5D2D2	E39C7196ECC5189F37336AD559DC13CDE5F6D7A0E7BEE43BA1CB4B8335FE1BA4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_BingWeather_8wekyb3d8bbwe!App.OC9oMrMV8	data	35556C8631795BAAF0745EE6B1852B0E	AB77805F5BA60B323AEFB90739EADDD84711034B	093F424C9B3D71DFBEAE0360D4C57D3E7D72CB8E81935F5D33D52B3794441F94
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_GetHelp_8wekyb3d8bbwe!App.OC9oMrMV8	data	DD49B7882BCB0534EFC97DC78B5D738F	F834F407901839643460F97C752E847F6B803EBA	CC719AEE72CB1F05A53E4CECB8274FD02D9A17CFEA05F8241DBFAB2350322F55
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Getstarted_8wekyb3d8bbwe!App.OC9oMrMV8	data	0541848F11C7C0ED29C24F75FC401DBF	3A39635777CD76902C0A50F7C4A6EC955D08446A	3735B6A2F7CF0DC851ED4478C44920B381DCD53371FA1DA6C1981954A9D2B0F3
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_InternetExplorer_Default.OC9oMrMV8	data	834AF22AB419AE58CF2FCE589E38A687	39E9AEF78309D3520B3D7D4A303EF43A7020AA10	4C38B6938C7783C3D3C2291A0665933A9C6F873F1B8C847E938984B786F97500
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MSPaint_8wekyb3d8bbwe!Microsoft_MSPaint.OC9oMrMV8	data	EC26665EE3C4FBD811F114003F754C89	11598C1A18255536E261469F76B88C36D4ABF2D7	1A16E1B87CC082F221339B1D519E5041F455399721A3E9422153868F11D0ED79
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Microsoft3DViewer_8wekyb3d8bbwe!Microsoft_Microsoft3DViewer.OC9oMrMV8	data	5DCF3F80A6C98F808AA7966F2565D162	41409D4A53F077D1CD2FD929325FF811F4ADE977	BDA6BBF282506F838999BFE23709FD7ADB242534C29F67D2D89622F61433B7F6
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft_MicrosoftOfficeHub.OC9oMrMV8	data	ADFF58672821804D4994776AC9773A54	6110738A5090D2D404B3182B6CE856D3DEFB7C01	D7DE978DC250123425D355DD2788B6A889B272EEC18E1342A1176B421F1C2C37
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MicrosoftSolitaireCollection_8wekyb3d8bbwe!App.OC9oMrMV8	data	F0A607FD346746DB4B5083B4985F536A	C25D85AE84200648758FEE807D0AFBB3C56DE52B	DFFE7DD13E7EDF1EDC257686B0913B52BC67619EEB7FB461ECFE5B7B745FCABB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MicrosoftStickyNotes_8wekyb3d8bbwe!App.OC9oMrMV8	data	C3EA5715C89C6A48925E07EB5B002145	008A9E2DA14E33FE035259D3411A60A8DABA672B	7A3694716F83AE85B961A45A9D3C792094930FA2CBB176110765D44EAF574B60
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MixedReality_Portal_8wekyb3d8bbwe!App.OC9oMrMV8	data	BAAA2518F0E5D5A9F88E71DBAFCB8466	D31041A864CF005677B83C7E75B355DDA3A497B4	33B68F792C5B4DFFD9265D981DF9625E91E1E135E9F736D93EBE0BFBDC95949A
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_DATABASECOMPARE_EXE_15.OC9oMrMV8	data	C5864337376D906F08D85BDC880EDC2D	78B32AAB12497C4F5AF13DF1466A93BD88EA0B1D	ED72A6714E119677889604BA77A3DE4AA351B5DA226AC32A8C7E2249A5E9D4AF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_EXCEL_EXE_15.OC9oMrMV8	data	BF41EE2A342AAE897A0A12E04CE46B44	973A34C4F88FA2C79035E110CFF885A92F7EC060	2ACE21AC275492BA9657E3B27531EC6A4CF7C99B948C058EFF6D9C6100DFC2E6
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSACCESS_EXE_15.OC9oMrMV8	data	38188ACFDB22EC3565570388104C66D9	56C573321BD20381852026D011C4D2C3966C6042	8FE67781298720E95745F901B1A9A6EA752D1F64E9259F0C5D7CFF62E80DAF82
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSOUC_EXE_15.OC9oMrMV8	data	92942E61F0F2E107B02E88C0A41E0711	5BE1095D8929FBA4DDFCC8AD2E06D2FA826F3901	9DA1FEE1BC59BD2BB000835C4ED40BAE36B4A069F86CE11AF1D9AC63F3B0586A
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_MSPUB_EXE_15.OC9oMrMV8	data	0EFF24B37F36EB85CE925FB0BFC4BC75	A30147E9E276D0BCAF56FBE8465336936D34CA03	C6E257568D447D5ADDBFA2352D2241E003A90E6FD8173243866589B7D9ECA411
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_ONENOTE_EXE_15.OC9oMrMV8	data	0C09AFD7350A89CC675AC818FB77B7E2	8696BE3EC5FEA9272092FBE2FDFF7FE3F04BCDD3	E47BB753313B5A631262FFD633BDBCEF4D7E59A1F8A54DEAFC00287E478BDDD4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_OUTLOOK_EXE_15.OC9oMrMV8	OpenPGP Public Key	E29C723CED01E53E8D790D9D88CB2C61	F8781D849727C660A8771C17C119F567D0F7BCAF	627FFB866C8F857A5897A1CDD0D9CFAF8864AE4A1BF3646FB22315E798C5F7DB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_OcPubMgr_exe_15.OC9oMrMV8	data	98369A12FEACF0DF0FE723BBE0770F37	88174FF40E32D6108B1373BAA6106BBF370F67E9	863A09E2110F271EAF810DE3E1A2E0D3B0F58404852A17C73F4EA040CEF6EE4D
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_OneNote_8wekyb3d8bbwe!microsoft_onenoteim.OC9oMrMV8	data	65C2CA8D2DB86334E74E516BD4982CC5	F19A4ED90F56942A08B4C91E6C4865ED937D7AF3	6A9454F8A56CE591625631793420E7D6F63F0695807BE1FCDDCBB3E65A3E408B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_POWERPNT_EXE_15.OC9oMrMV8	data	2017C24C35CEA9EE68E26349ED48E6D0	BAF8FB0A681C79A80FD049C608EF9B1C0DDCED2A	6FB974FACCD06A0AE5E88B224317BB4C1690784C9047A2105870952003C81BB4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_SETLANG_EXE_15.OC9oMrMV8	data	C0E213EDBEA7C3DAC70E61AA425A7B0F	4BCDEFFCF379D457BBF1BF891EF68357751073CA	76B4850118926929F6E00F0DC591623D3A606B955A7D8378BC028430C7A1184C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_SPREADSHEETCOMPARE_EXE_15.OC9oMrMV8	data	BFC30968ABD9B46FCEEE45810DCA28F4	0C1FD6903F739956C33243CB48D7752E67D9196B	1D3D06A13FB3279CD2187A80ABE9ACE41208A17E0A11E9FB8B03941CA02079A8
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_WINWORD_EXE_15.OC9oMrMV8	data	2ADE1BB02DEBD788DD041E3AB7D57277	9D7451150F912DE4707B75911F55FD6E3FAFAECF	0E7AC6DDC707DD4392CA59809AF986D23A29384E5AB86170EA3863D3C09248A9
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_lync_exe_15.OC9oMrMV8	data	30E39C4C9B4EA5487FC3B4029B420632	DECAC97BC109AD539F10CDAE26F281EE9CD5082A	65CFBD05F2376FE38AF98D9D3CA853ECD45319D7C201E357A710EC8E7768010C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Office_msoev_exe_15.OC9oMrMV8	data	DBFCE8DA013226204AC44DA26B71C46F	E0BABF83C935120D1CFA83F26AEE638C9AF5A9E4	C6D86370F1DD764DB528119EA14D86E031371C44732BA795D4045DAB4072397B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_People_8wekyb3d8bbwe!x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.OC9oMrMV8	data	7020FA0D70045BA374CFB7F7A48329A3	C4AA2F016388204835870E0A86FD47D09567E084	D11B0F209A903B3FAB2EEA67008CCEECF68ABE616D1796B8248849D6E2B54F44
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_ScreenSketch_8wekyb3d8bbwe!App.OC9oMrMV8	data	B01714BBEEB39C4209B3055872C6B1A4	D674D6F729C051C98247ECD6BCF1337017F9B49A	3365FAE8473EC05044C9E6F9DCA13F160D0547D269229B2F54DB9E45678DE245
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_SkyDrive_Desktop.OC9oMrMV8	data	253EEA737CFBC63F925952A5B894C52C	BB69398BE6E017C0D01232425BCD59D0129AA351	062A2157932D79DD76F0E9E07A9633778DBC57FE30074132DC48C624021B2414
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_SkypeApp_kzf8qxf38zg5c!App.OC9oMrMV8	data	14BC352A2D65A86CB12C625DCDDC3CEB	EF2F167B796684F3AC30BAA2547E5948233118CE	45AA28061985A1F4D11AD790E17EB1EB0624EBCFAAFFE486E860A15F654C4C9E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsAlarms_8wekyb3d8bbwe!App.OC9oMrMV8	data	BDE276A5905441C6DAFD95919C7451D2	A42E7FAE845A0EC30DAE664B85764828C14146D5	D8E40AE9EDF4BE67F50927FDF562D19C76D2A587CFC98F5FCAB2EC9FF6906CF4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsCalculator_8wekyb3d8bbwe!App.OC9oMrMV8	data	14711B8CE8C896B010C435D3E2A52673	8FFF26B4C39E0F28D7C664CD6CE7ED80C7707411	18F7C98ECF8E52BD71468F7156D8CBEA8A5C2CC42C3F2A811F30E105C98F0CB8
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsCamera_8wekyb3d8bbwe!App.OC9oMrMV8	OpenPGP Public Key Version 4	ACB57E8616E86D29F2E7E717EC2973A7	B297AEB2730D901A83B4393050FB03510ECDF0F7	80CDF2D49AF88A4DB50CF50081AC237E7C58ADC0B27FDD301AB2CBB6B85F2222
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsFeedbackHub_8wekyb3d8bbwe!App.OC9oMrMV8	data	DB68D7D8D44EDED0322A37C7F3BA9E91	6DCE39BB02840DB8EF771182DAFFB25AA53EFA67	226EB70FAC1D936E882E0BC15F54B110D61E6C78FD48C0B61B0543AB90846E15
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsMaps_8wekyb3d8bbwe!App.OC9oMrMV8	data	F73DA07A10562D591FB2837F05EFADB4	AA6129AD9C29FC1B6213094B4BC36C6490E5E34F	47BC8AA4FD7A2862033EAEAAC680C783D01A40A6E08CFEF2DC1AC1AFF02B553A
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsSoundRecorder_8wekyb3d8bbwe!App.OC9oMrMV8	data	4A04DCDD3E99EAFAEB0BEA47961FF9A1	86459AB8DB42FF077FD66B1C9C8E762E7AC2BC52	D3BB90EC56B97123EC0D71F2C493883897DF4FBB95845C78EEB0942066E8A1F1
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_WindowsStore_8wekyb3d8bbwe!App.OC9oMrMV8	data	DBEF4E28F1014ABCA3FAFDAEA50A3EF6	04D6A6218966694FDBB5AB539043743A49E930B0	88288AD8EF25367A0B72928E2E3B3F118F69402F5521092A7E8690A1E14CA48E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_AdministrativeTools.OC9oMrMV8	data	2604A3902DD8170383376A9DEDB7DBC1	18940240CFBF14F934C5AB5C2E37406B8DEDBC15	DF0EB505FF5993ED4C59D84EEDBD4E601240CAB7AC813EC87BD757532A4455DF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Computer.OC9oMrMV8	data	2FBD57A81EF6A175E58159DFE90780AF	42B2EF121C2211E6BE50A19F48BBFBC7E8214D30	31E8818D8BAAC363A2386168A9FF862BF3C6E71FC11CA16B5DD9C56EA2FC2707
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_ControlPanel.OC9oMrMV8	data	0C3FCA84E23AC05B011599D76F3217EA	31018BD9DC8B89617963D7A8B39FC854C13E238E	14DA0E190CEF82DD70F8E90607240CC43390CCF822CD0CD1C1B22E7765DAB76C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Explorer.OC9oMrMV8	DOS executable (COM, 0x8C-variant)	6C1C0F82293BEE511C504FC069C56044	2EE5471D314F1B8722E092A4CFCCC75E67C3D841	968A3450514DC2E11A5D81FF8809E1DDA605159F616B652030A786EF074B64DB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_MediaPlayer32.OC9oMrMV8	data	DDA936858ACB40400FBCE8AA338366F3	823F24BA5EF9CCBC12DC7D9C2901218D538FA22F	110F315FE4F0A7273F359E2CE303B8D224BCA9627B50BD84D670CEC9E4D4961B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Photos_8wekyb3d8bbwe!App.OC9oMrMV8	data	99995979DC47D57DAF2C827CD20F0655	93638668FA729BC36A52132760EE16102B0DB032	76AFAD8A2D5B68CB340934471717A117168609CFE5AA07F1275EB238FB5526F7
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_RemoteDesktop.OC9oMrMV8	data	D09CDCECE7E6B4C14B11FC1BC6695B92	ED02EC82D716E2353DEB0B25C2FE153043C030EA	057E1E3653D421D239B93F36BBB816BB86E30863B4F2E9088339D314E2D863FE
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_SecHealthUI_cw5n1h2txyewy!SecHealthUI.OC9oMrMV8	data	95AFC26A39D530A1B22F5091E3180E71	291F63108F75A37F89042908A60B812D681E39A8	49AAEEDE0BA06F16B8A8262E12AEEBFC9AFE43F13718C26521BABD14C37E7EA9
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_Windows_Shell_RunDialog.OC9oMrMV8	data	C78E3DE1F0B324CF7CC29D080E6E996F	3DE2FB816A40F2C23970A5BD65AD0C388C368C6F	4FE2BD8E8413944F74BED1ECD65801C2D07121B6CFD03F2FE6BC2822B7AC7EBE
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_XboxApp_8wekyb3d8bbwe!Microsoft_XboxApp.OC9oMrMV8	data	DA1BD9F2BF9FBDCB375001AE47B34539	76A9126115293CDA0EDB42717A0B06D0E26C6E27	6758B6565887D580ECDC351DDD3D6A7013C01FCBE0BDBCEE258D4D1BE1E159AA
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_XboxGamingOverlay_8wekyb3d8bbwe!App.OC9oMrMV8	data	E8A5ECAE10750DC7CCC7C887EF695A4F	BC46369CABB776E6C334E2C1BCCB021CACF0326B	89A02A56E04972ADF8D04682EADE478308DF8C84F4AAF497028BF685EC44DD8C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_YourPhone_8wekyb3d8bbwe!App.OC9oMrMV8	data	633E5AC8FF432C1839209213B3526224	B1FDE0C4C3D5460F1FC2989D43CD9A7F9412884C	EA36D5BC7E5C33F265A8A433FD7E1FD597458CF8282288B155CA60EF16C7E925
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_ZuneMusic_8wekyb3d8bbwe!Microsoft_ZuneMusic.OC9oMrMV8	data	62C35A0E3E79E675DAF3D28ADDF7CB63	A4D5EBB55AFB4D642116322A1E738060851E9B52	7B3BB86027B3953F5311F367107CE59B56599949C911F17C423A15761689EB4C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_ZuneVideo_8wekyb3d8bbwe!Microsoft_ZuneVideo.OC9oMrMV8	data	F5C51A8A9209B555D8A1B4A8977DB665	F4D1FBC4CD7AD1A87CFA86F72DDC767FF9FF2BF2	D40855D0BDA5596846C191C8B585F07E07F26E20E4386F02AD6770B37C25E872
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\https___java_com_.OC9oMrMV8	OpenPGP Public Key	4A45C05E97ED37B1B68CC39F9D4CA284	42D1D8F2C1760290EAAF29BB714324BAEEBE7B7A	397E1730DC31E547F75F5CC6C3CF7BB12C1A6D7386392ECB56931D8689BE586A
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\https___java_com_help.OC9oMrMV8	data	4BD9E8DCBF25929C197AF135B9DBFB6F	5DA430888B441B3609EAD7D1A896C4781680FFB0	B786DA733EB1E5832C8FDF6896F539B288C18655391C767D8F6D0C6DFC3C7A72
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\microsoft_windowscommunicationsapps_8wekyb3d8bbwe!microsoft_windowslive_calendar.OC9oMrMV8	data	ED7D5179E0C5D1E9B9CEB7DAD18BE927	A22F5549344234CC71D181B448E9014224C6B982	9D100C8AE93E832CBCFBACE100D61928B863C3309D33C2C8E1AED243A166D3E3
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\microsoft_windowscommunicationsapps_8wekyb3d8bbwe!microsoft_windowslive_mail.OC9oMrMV8	data	AC843EC410906C9D02164D6EA0841E77	119ECA099CBF6FAB1B493412CEA26D125149E00D	0720E66A69DF998A6DB6AF5656A1C80207EEB84FACABF197887FF8CD9A703190
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\windows_immersivecontrolpanel_cw5n1h2txyewy!microsoft_windows_immersivecontrolpanel.OC9oMrMV8	data	7C24523DDAF20D3073AF578BE74D366F	347A5DCA56D05FD74B6E926C26C225B3562E0DA6	EA47FC35EB93913A61D8F67F77D2AF6F78E4784DB3A4531E63FE895578486AED
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_MdSched_exe.OC9oMrMV8	data	BDB4C4BA8D5136DED91C4E04DD44FB98	7937876BC35285394ACD53F5C50D805703CD4EE9	6D4B9AE172DF6A55CC5730B7002D2FB05758224910585E639E00057CEDD5E68B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_RecoveryDrive_exe.OC9oMrMV8	data	4F1E95C2872B30580880049E8EF4E991	764DFB2C1EB0EEBAC7894B27E37C41F4D1CE5EBC	EF6487B42433EF27A2AAF5840311529F28567487F2B51F71755C88BDA2F7D0AB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_SnippingTool_exe.OC9oMrMV8	data	DF8F29163E654E18BC8E3B4647A3EA19	15A673C767EA1E38CA644A34F8F09D391F15819F	74A9687733716087E3DAC9B9E03AAAF9B2875EDB0D02CEB3F04E75DAE43DC5A1
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WFS_exe.OC9oMrMV8	data	EA2317BF2588BDAECE65C86A494377C4	9999E3EB1399B370CE7A46110C4ACE945F9481CE	F38B0819C737F543BDB15A728F2F3E4202E76E84CACB2FA9D85D6C9738E0BCDA
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WF_msc.OC9oMrMV8	DOS executable (COM, 0x8C-variant)	73DD911791B2B939DC42E8650C98A658	7AC560B8E592AC841C3DB095E036452B6B1142E5	03574CAC5675C81D80E43E8AC72B997D04ED4830DF770B12818B95268A8CF20B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WindowsPowerShell_v1_0_PowerShell_ISE_exe.OC9oMrMV8	data	B35FFD4E1B2559976DCF245021393119	CFB5EAB78120530F99AD3FFBD76C52CE5CA496C3	A3DC1F058B1246A340F91C181EDE5DCFE6E002D5A1909AB9B74081B0F90486DF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_WindowsPowerShell_v1_0_powershell_exe.OC9oMrMV8	data	38441FB90D07B84DD8FB2011D830AA53	28B70F97E2A0E9E7279487BE3028EA1B48C679E8	9D4F3445CDE03D66C2782694607D56FE92B2AD9E37056E648631F7C619E7FEC8
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_charmap_exe.OC9oMrMV8	data	0A4AB34F0AC583B1B6CD106271C08E43	DFE10F0C30F8E50F5E02A30936F4FA821A92178C	CA558077C2EABC6D69BF80626C672E8B364192AE62A40BB3C2667E657F0E344A
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cleanmgr_exe.OC9oMrMV8	data	F1099AB243496E9FC83720AA94CA9A9F	07C15C02BA50C25ABACE515946200D73135ADBF4	1C24BD7C04D348F8A8726373C0FA7CD26EFE6E912668275299F3B4D44CFB9EBB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_exe.OC9oMrMV8	data	465EAC2446BC7DBAFBD9B9AB22214C5A	71C3A97C5B72D7603AF2FEB34CEB6FBF891D9D4A	58D4EA3B0DBA1BB44F3F44AE2F251E440B46D9FFC691BFA8ADFA1307F0973443
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_comexp_msc.OC9oMrMV8	OpenPGP Public Key	3D90339E6D78C6DBEC19D803D3C036EC	258F5FBDEA86666374431CFE3193653DC8C0E20A	1A8E06E639D7E3A23088019B58F7EE1E1236539C46EF52C2D805BB564EFE9423
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_dfrgui_exe.OC9oMrMV8	data	7CE6D135507E4B114C64F225E1F45681	CFDF4AFED8687C57CFF2826096B294B3F74551DE	7C75DFE2D924508A4AC0EAA061B78087AA5329FF0B25E697B93C3C9F7E7844C2
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_iscsicpl_exe.OC9oMrMV8	data	D8DBF69C112C7CEC2E42AF4C7232C19F	593CB5FB6115ACA1E8082A91861F440A772B4289	D25414B8911166875C0ACD115D79940C353E04B433F859AAB0F72D59B6C9E38D
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_magnify_exe.OC9oMrMV8	data	425E27F331B3155A79E15E454D6876A1	4DF6DF2D4B318C094B79E3850B8A490D09B262C7	53B3EEE995D310A400024AB87B881FBE4B59FF91F36BC0BA2D8ED019A48E780C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_msconfig_exe.OC9oMrMV8	data	C4923F5E2390D4D8FA46B5132823FEC3	FE028F90A720C3DDA64E84C85FF74364A1731811	02DB008F3BADBB7DB6191F26AAF35B2717304B4662F207F6EB007B834EF924DE
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_msinfo32_exe.OC9oMrMV8	data	BBD4EBD0BBD09B749161EB7E92101B8B	F3F24735771A99D0B04903C667918ECADBC58E12	96BF2174098DF778A99EEE8A61323CB7F141DE0BE9758E637E4788DC9F075A69
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_mspaint_exe.OC9oMrMV8	data	7A00F98383DCC476103C59B3EBCBBEC8	CA188234C96F63F9EA4127ED57E06ABCB2544085	0EE84B6AE5297F8C9FB12465A7AEE9C2FA5A8F42326E9B9EE63D8736454429DB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_narrator_exe.OC9oMrMV8	data	080C4D34945F6D166AD39A8D79A5C073	F9B9A37DF3F6E16692D16BE48FAE916C488E52E1	D686A8D5CF9ADB5DE42653E744EE8B782E32CC15A88E3FD29D7C7F516B16B784
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_notepad_exe.OC9oMrMV8	data	1768BF76F94873083584D2A32CF9C87A	6C651DA35D178EFE5B1621C80D7C6B9E6D87C73F	23B0AC5A109FF4FC97F5ACE7949144D0406262E9BE00E619220E70CA2ADA1969
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_odbcad32_exe.OC9oMrMV8	data	58CC4979282792381BBF906933B2E57C	DBB2798BF6CB0A506BD8426E5F819611894C2BA5	9379CCB1EE0AAC4E7537BE6B1651AF6E7AF23C2CD128AC419976F83B38156EE0
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_osk_exe.OC9oMrMV8	data	14512363EA88038E987CBD07EDBC9038	09FDE5469625467347A157B15D0070627756A596	C2E87C8388DFCDF914F4EDD169327E8B0C66239664755D93BB560249E1191BC1
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_printmanagement_msc.OC9oMrMV8	data	FCA2B920483646F51AE88FF8FE5F1F4D	9948A48D55C15A5E98BA23590469945CBE75EC38	8E78DD83780CAA20ACA93C2801961678502F9609183650D4DC3BEF2AB92FE8D4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_psr_exe.OC9oMrMV8	data	6A21F86CEF2A493DBBA035082E2D9641	4A8B540A7D99A04B441D57F67A28FC5E57724B87	17A6845E1C86C89080C91A16C12314FC6ADC10CE2026F94609B8C6FB2674EC3E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_quickassist_exe.OC9oMrMV8	data	FDC2AE7DC29978E1977BC39D6ED8ECEC	6351B2C0F0C03D093D333747E0CE474C218C0A9D	02A9F5D17E8E348EAF7E49325C58F654CCF0256DFA1ACD449421EFA3BB802B6C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_services_msc.OC9oMrMV8	data	CC44BBB6B8D44DDD9187BA84B6C5258B	9910920F09AB98171423F321668CBA3BB7326D3B	7E26D5B98A64D9C619608A56C565808B9E7DFEF0DD568141199DE434CAAA3BCF
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_7-Zip_7-zip_chm.OC9oMrMV8	data	6FE0754BF3010796AE129085133BAA00	FD7167D5A7BBDB3B870C162ECB2590EC6A90EC1B	7D305944FCCBC6D022070930C85F2627D7046B63E5630BE103552748529DCE84
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_7-Zip_7zFM_exe.OC9oMrMV8	data	5628EFC795B408490A2355DDCC6C209C	272B37A5ADD12B5807134527CDBF42CA40C92F40	DEA55698A4CBAFFC340413BCFFE7BECFAB4CC3EF207016FBF09FC73B05241F3F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Adobe_Acrobat DC_Acrobat_Acrobat_exe.OC9oMrMV8	data	D196A833BC63BED410B89CB2F5A8835D	95A98633699B4CBC595159C88973A12A7EFAECE4	B19A5BD81416BBCD1BFA82A9381FA059216B9A56F44329F554D56A2607943238
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Common Files_Microsoft Shared_Ink_mip_exe.OC9oMrMV8	data	B0E7C12813055A0E76FCBAE0A74BC96C	1F49EADA5A1A8F278D14BC47F36D49D6E4FFC9C9	44B53D3259F7CDD4DAAED4C82326E4EFDEF67F6F31562587172A7CD1637A589C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_Windows NT_Accessories_wordpad_exe.OC9oMrMV8	data	BECC2DA03EA0DCD10E8E8FCE9223BF35	59E64226DFCB842F9644F82C9350F01413EF0940	1677208CFB504ACB82DE73910BDC0EC7CADB0116DE29A59B0994F9C20696E353
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Au3Info_exe.OC9oMrMV8	data	CE5F6800F69FB26BA2B2C0A0BCA7B4AE	E8074C855A61DFAFB3BD09A784393986F5116DEA	EFB0F05F21A6F819BCC26340AE59AB3F3BC596B2C9F326C1911AC00FD3939C65
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Au3Info_x64_exe.OC9oMrMV8	data	7DC699ECD5F93C4D7DC88DC606725A85	05542BA2D6A9C4251F61EDC0B572C78FFE605D0E	E1B257752F340449126E0749F89C4F77A2DC91555FA509FC7713534CF08F5409
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Aut2Exe_Aut2exe_exe.OC9oMrMV8	data	D0C62B44B0533F161CC821DDDF369431	37AFFB44DB46BC5BEDF92FFACD61C492DE86527B	32AE5DF985A3D249A5F238488BA09A3A7A2613798C3F7878C3C2850E0F48E52F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Aut2Exe_Aut2exe_x64_exe.OC9oMrMV8	data	489CF27AA4C32EB78E188158EA90A4D4	611A1E2A66AA02ABDDCB3DB48C86287DADA8B751	988102F412C07F061ABCB6683D6F7BD65159F10EF182E950D35BAD18A545A060
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt v3 Website_url.OC9oMrMV8	data	C27D130070BC81BB2FFF4082E9E2E635	435EAF1FEDBBF00C43B64FE47CD5C262C3DE9E1A	146EE1B68B653C1BEC453757F09F31DB539E1DC5A6FC871A52A6ED96237E85BD
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt3_exe.OC9oMrMV8	data	77520933495CFDDFBDB09758BFEA5247	6A71031E077E7772295DECEBC8CFFF6AD72502E3	ABFC4A792062949699E282A97B7BDF45DE121B16F0744C7443DEE4951C9DD97C
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt3_x64_exe.OC9oMrMV8	data	B14DDFA51F5372F818A3266A474E0825	E6E65D52F744FE705355A3565DF2BDE2E309F52F	0174AB8BD6B05FF2189CE8B9F57237191A1789A3796EF1260196C69C8C7C553F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoItX_AutoItX_chm.OC9oMrMV8	data	CDF0AC5610E3D48CB923650AD217915F	EF28AF4E7F56FDE5B995815E1662603D73C8F8A9	58F11F87DC785011DBB207F25CA6E49BC6CE36301886F837EBE9DF2BDAE4142E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_AutoIt_chm.OC9oMrMV8	data	2D1FFA39659E17EBF088A461D99973BD	06E4BEE5FBBB0126C7B2C2114882A9BB28657B4F	E66ACF03CAC1F6390F0D4630A9D873B70CDA34D815ED81BC56261CC130E17231
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Examples.OC9oMrMV8	data	D2B9B47A170ED27C6618BAD7EC1D85CC	040CBB4BD68F184C2643F7484D95FD636F41637A	33E77BFF8E93140D87633A2A1D4781C9EFA8B86393E138CD2095066C1B206EC1
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_Extras.OC9oMrMV8	OpenPGP Secret Key	F4E3B5EC0A64B3F5D6E158CF45FCFBCF	3C9FD50A7EE51314618AA6A432CC473ECF356E64	735DCDCAB10BEB4001BB8C9D3F3BBE6A4D7F8787568B665478820FFDCA77A677
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_AutoIt3_SciTE_SciTE_exe.OC9oMrMV8	data	E90605E7501F1EC974ACC77122B4DCBA	522A5288B74A7FE2A457E6E94E656EE57793CC64	2C9B761040A06F51D8742CFD992BE4429E8A2E416639FC7F8088794F11EFA140
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}_Java_jre-1_8_bin_javacpl_exe.OC9oMrMV8	data	C75A6762A41E414C6222A77E10EDD4CC	7215AF5DB2555B77128507DA9E60281700C1A72C	9BE5155F81AAFCEB13215E3905786B8BDB27955E67B6370C8C23FE96CA4FC6DD
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_WindowsPowerShell_v1_0_PowerShell_ISE_exe.OC9oMrMV8	data	AEECA7F2FFD8F1F60DE9C81DC9C622D2	14E0985088D05EC16B938384658B819DA3423253	29F9A7C967293E47D6574D00363863DBE9AF2D2E8ABF31A7B2F685A73895B8B6
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_WindowsPowerShell_v1_0_powershell_exe.OC9oMrMV8	data	43805DC0CAF82E66CB1EBD3D019FA64B	6D86F32DFE19C55EF7725A23607AD6D0AC50E44B	1F1AF7F32138AFD56C75E2FE7F1BD056421BD1D55249A05084B7FC2376BAA54E
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}_odbcad32_exe.OC9oMrMV8	data	FE43D7F9FF5D0AC1AD01352D7DAC4A42	EAD3F14AD453D409B61AF0442DBB7CCAEDA5E54E	D00AFA9B2AC353E65844E410F506F00B162736292D243AD35505C665847382AC
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{F38BF404-1D43-42F2-9305-67DE0B28FC23}_regedit_exe.OC9oMrMV8	data	B5C2DBC9A2D27EA22952AEA32C88A720	604AB2A57C3695C7223E6BD0D45721F76003E154	0FEB3A19D29B339EF4F26EE582AD627489CDB227F24C7647985C269FD08480F4
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\0.0.filtertrie.intermediate.txt.OC9oMrMV8	data	B25C5DF85BDF5586B393EA2298BCE654	FD5F65C2CC8BFAE8AF9D8373E82BE58BB9472207	48C32D007E79A3C27818C50313C28B7823BD1C609099E27EA1347A0A2BDF2122
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\0.1.filtertrie.intermediate.txt.OC9oMrMV8	data	9DA5D4C4B43644E0B134939A3EA2096D	390340167856709D8F48B83C5CA8F7B6DDC87E0C	84E5BFD4F9B53C0FEFB41A9A98CC08F1BD13491877B597D2A145FA9B53D5666F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\0.2.filtertrie.intermediate.txt.OC9oMrMV8	data	97B28F3FA89591C9515466F8557FE137	47BA465971C2D6460CF2DDFACA9A40324C39BA64	706CE047490CFD93DB51E3EBFC87BA61D248B1C9BEDE77F1819F1D3C20F67636
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\Apps.ft.OC9oMrMV8	data	F61B9F498235538183F443E6015E5BF7	24D2DF4C43E73DBFD53FF44DDF44CBAD50083036	F839B4A82FF8F18E5558B73200E948E3C1C055551F4DDD8C8395A77EE3C1C1E8
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\Apps.index.OC9oMrMV8	data	9FFC970588209D90559AC1A0D15DCEA1	14C3A2C641A499AB62A34B0886AEB355D515D379	0665522AAB3A14C5B9B4653A10D8334CC4C0626A0699393BD0378495432B3466
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{2c33d893-bc92-487f-aede-304ebfc79509}\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\0.0.filtertrie.intermediate.txt.OC9oMrMV8	data	536AB4EAADD0E55DED0265045CC80D7C	132E229767944A5184E8DE91B06CBABC67A25B08	5CEA53CC985471BA4BB0FC3404EB1B01D9F273FFE2208B2B2FD04062B0D7A528
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\0.1.filtertrie.intermediate.txt.OC9oMrMV8	data	6B24E75988C89781575E57D231B9A4FF	3490A7C0B15017D4F1A731F63E49ECB044CB9662	1C91361ACB18F7D8F6F43A38FAB60868BA232EB55703720D154556567C4740F6
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\0.2.filtertrie.intermediate.txt.OC9oMrMV8	data	D2E93DB7358ACC34B094A883E13E9DDF	0C3D8420F4C5BC769E86D583ABBE47A36D8CC924	D8EA87D77674F344D176CACA1D35BBEC7CAA7CAB6100C3A18F61BABC726657D5
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\Apps.ft.OC9oMrMV8	data	323BBD7BE389A62607D2BB749E6A06F1	8D449178090302886A3661E03FA583EBC6758CA1	D719DB7B814CF98BD6DE423CFB0624A8051E206AB585FC5FE18D2263A09ECA42
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\Apps.index.OC9oMrMV8	data	9FA161DBFF8E39E1CC0424DBF69C1577	DFD55D060C50647A10551F3088E66ECF38E280FD	B4D5362BBAE90687948614C1339F3DA07896F56A205567D2406D2E2CACF0542D
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{59b571a3-bca9-49e1-9e72-2d4acd92de8f}\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\0.0.filtertrie.intermediate.txt.OC9oMrMV8	data	FED153A08503D26BDE9153B8B44F1EED	68904CF86ECB24A293FD1B8897DAF585F7B9E540	28142D44574FD446A5385D3C452F4CAECA202C113D952AB057EE42B84DDE85F2
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\0.1.filtertrie.intermediate.txt.OC9oMrMV8	data	AE40E4CEEEE430017FA7DC543EA125EE	A3282CDF85C9178CE15B0E35A9A229D5B8C9A7D6	C1847D9457E9B58BF8F6ADA75E89B639B73ED86F606DF63BAF7E373B4630198F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\0.2.filtertrie.intermediate.txt.OC9oMrMV8	data	D417D1938B602ABDA8980AFF163E37BE	1C19D46163200EF990E3D67B6398B0BA4FFD078D	631DB6265E86D9FF71ED6ECA65167D0DA61FD6C3D16C00B0F39C47AE905137D8
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\Apps.ft.OC9oMrMV8	data	84F4642ADDD791D93017CCDF33E875C3	52EC585F8E976D6638A3038F9D85019D398041E5	09974F14B5406D9353B6443A47645CFD17CE48D11255C5FDD4E7505F5B02E685
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\Apps.index.OC9oMrMV8	data	C6CB621C1F7E85D83C40B39365196D92	DE1630CEB6EE9FCC8F77AF3E3C5527F4888388C4	64A637689EA8069290CC19C3566794F27750EFE50975CB257C09B83DD5654CB2
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{e65614a4-2986-4163-aa7c-1a44d47f3a43}\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\apps.csg.OC9oMrMV8	data	1964218F4FAE32AB22B8CD9A21EBC4F9	69D99D944836A7867DDD047CA5FB3A391FB95EDD	A9DDEA9DFFD497D939014B15B1988E43BD1C48F830A62C2A6F7906F32C1956FB
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\apps.schema.OC9oMrMV8	data	F53CC52418FC48CD7D9FCF45E42F0B11	D11F457D8F27BD50CE133158A76B6F6097735BC3	978B3984A05972B2D694A99E9012AAFA88A8BC0F2E8F4CF8F938FAF2792B5070
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\appsconversions.txt.OC9oMrMV8	data	9253C3EC29F2A173B71BFB98C16AA12A	52E7E0E5B1A0C2F75A07F3977F56955C2A6C7BD8	5A2385E44F5FD327A11724994007236C885A3F772A17255F1F0FA76C6F351DFA
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\appsglobals.txt.OC9oMrMV8	data	3000F1B8E94555A298C5F1FE65F671E6	15520844326849749118D5CAD66CE1C9BC2E3078	8B3E8D08678D9C6E0A17477876AC490D79E662F2DF7CB3CC68C9DBB0CE32DB1B
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\appssynonyms.txt.OC9oMrMV8	data	D7997EBB008D1638DBEC4C9D29BB8775	B0A1536AE9EE25068B876C48F5FA3C98B022C48E	E489F8DE2BF4FAE7B8E53BD90299AF1EA3DDEA1441E979A1F2EBD182042C7FBA
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settings.csg.OC9oMrMV8	data	C4D132A42A2E5CFB358545364DB0B8B6	160125DD9DC8C80592D80C38EB78385435509EB2	53C93C2DA46D7D3136D12080FBF96612BE2AF144EB7E456E28AC76DE2F6ACCE0
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settings.schema.OC9oMrMV8	data	CA8CFE932AACF84BE01866667B34AF68	27FE890A7373143E7E6363BC18C7A9CFC0C3CFAD	82B8569ABF1F9101DBBFE8E262FDEC5AD6F5CD815B7FD6CA4597DBDDD26F9493
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingsconversions.txt.OC9oMrMV8	data	5C0D896D12AD9DE860ED73FA309A09C5	BEF7D52DF03659C1295D6BC6E1BA19C4048439BB	BF31D5310097A4CBA210B3E8E6B2DF400E3A8D7CF85A240A451D2BD895B92A10
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingsglobals.txt.OC9oMrMV8	data	26B66F0081F6FAFC0F1274D37193BEC4	A338B37E88A4057860A81DD1D559D98D645160BA	BE853E1C577238589A737EFC99196A9CAACA1298FC65DA11363F86AE49CD6784
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{0f31ce30-ed3d-4588-b294-208da23711e6}\settingssynonyms.txt.OC9oMrMV8	data	BE7FBC423BDD88980E18C00F31C12645	E38FC7A1BA627856EDA11332DB089B86E3E5F197	73E5128D355BF0A24FE021C8EFBE7B01025D2302325A7DDC10ED012D2089BE03
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{76cc83ea-ae96-47fc-9329-459e5ad2d67b}\0.0.filtertrie.intermediate.txt.OC9oMrMV8	data	8289E17259F0C695A7467A61B7993768	FE511B7ED5FC0E44FE92856A43020D6E03F8A956	248E5CC85632A6810386BAC112267E6AA69D10B30EE58B9740F9F005AFCE6F50
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{76cc83ea-ae96-47fc-9329-459e5ad2d67b}\Settings.index.OC9oMrMV8	data	389B4050CC7FDDC4948A19D781FB5AD5	C54AA3354A7F7B5375A6263DDC0D3C91C37AE784	31342E7E8450245A2245F7ABBB4AFDFFB2229761E26DFCD57B5521DB292FBD57
C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	0C2A0988B5E936E176E67AF167B14AA7	237C7508F0CE2C8496EA8F9F4886D84BD5A33AF9	937890F59A911E6333C2DE3B694E6D2A6CDE9B659488065F62E965B04C6C1219
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\DiagOutputDir\LogFile_October_3_2023__13_9_20.txt.OC9oMrMV8	data	27C4B7220A2452BEBF156DA867678F5C	71DE20D96B10D31B075ACC9AB4E9FF10DF5FDB75	EFA0C3FF099EBF44CF359234358B152C688930D17DF727349CCCEF7233765664
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\DiagOutputDir\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	1D550265384D22F86AD515C1DE041750	9114E773D4B30749A21962E9215342248B1D87DE	E5E4C6D8E412D2AB4DFBB859F284751DCA4850BEB1B7C044B1542B7A41CD2F2F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxGameOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	DECD27DB222F75D4E032A2B32B827160	6D40A683B89C8E4BEE4804B78FD9EEC9C84834E1	5889690E9A3067F4AFD46BF6ECA4F3C7AD4289232CA86F282B8F4740F08768EF
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxIdentityProvider_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	122F127D85FB318594AA8C186D3136C9	994063735E65804ACA6A5F6F7947CA57B6CCB491	54B067B4D3D67E245A19BA95CE4F3378AE41B93DE836CDDC682C013C35C53BC5
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.XboxSpeechToTextOverlay_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	2A77FFCF94055E13A8A5574EE29F37BB	08325D42A8C4CF89E6AFA5AE4A4BF04C9F749593	781AEB9C36DA68097BAD88B1BE1405935271445DEE02263B8B10CD018E3290FB
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	63231ACE895B7D6FA679B7A91BEC2912	C9D67AEAC5AAF72706CAA9A0720925EA44AFA13D	251D26B9C47C08EB7EA0B65498D2B26DA449E52FAB75433377F372C445388983
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	A308DC57B95415370411758536EC0C66	C4349CF16BA715BEB5A7B098FF81BFFFC1E1D676	37A5D8612051BCEAE036A9862232C9D9A5AA51FCD4DDEF7418E8AAAB119885AB
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	359E7AEB887554CF998AD25F2245980B	3D3225E6A660DB94AAD5ECFEE6A23EEF9B1763C5	9D6E8F094DBD9A01185044DD1A0EF0CEAE969BE2DAC068C633C3846224F63CAB
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\Settings\settings.dat.OC9oMrMV8	data	126CE861E4C5E51E193B9B5763D6FE9D	4CEB827B0A8445AF7D149EF635C44E5B4745B770	4930622FACC7C470C4A38429807751024C147CE092B3BC741E4B5719A98E4F60
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\NcsiUwpApp_8wekyb3d8bbwe\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	10AE443873F7B21DB91789D076A3A086	35528DA4AF910901BE1301A9C7CC8FB4A1B8B05C	724584C0965A1A531BFC6C76E7D96A72C6EB25DC69EC2966ED93BEFEA358C137
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.CBSPreview_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	4625EE25317D5D6C5AAF01C345B59B31	024BDC55F60FF737220D0CB017897E62B6E37489	F5C048D665F70DAEEFE0CC623D8BF1740EF567B9EAA4C5475B7D01C35159993E
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\Windows.PrintDialog_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\AppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\LocalState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\RoamingState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat.OC9oMrMV8	data	1BD11302EED913E4E738156378E6DD24	20F3622319B18E9B785939BB9FF4A0FA85009E50	555984785AF070316B1F6A11143E8362C2AF83EA33EA329F864A4075036020C8
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\SystemAppData\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\TempState\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\AC\Temp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Packages\windows_ie_ac_001\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\PeerDistRepub\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\PlaceholderTileLogoFolder\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Fonts\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Licenses\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\Microsoft.WindowsAlarms\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\8wekyb3d8bbwe\SettingsContainer\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Publishers\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\SolidDocuments\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\SolidDocuments\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696334775820156800_6EB929AF-656E-4F43-9731-EA7753E1F1BD.log.OC9oMrMV8	data	87AB1F3793CA9E7CBBC58DE347F6D39A	8B82E508BAEAB5733379B1562974750118AD2DE1	13048E245864AB603AF11265C331FB3BDC734A30C590506C5070265F6B3005FA
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696334923056622400_BD966DD2-7850-423A-B1D8-7882CE1A6D15.log.OC9oMrMV8	data	B80782E20CA3094152C48DC197E364F1	F41D3007208D6748C93C63867864ED1842800592	3D8F9111546F5772627234ABA9AFCC917297E8B0B6C3BD1FF6048DE1BC2DD7F9
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417072488237400_C12D9B44-3468-47BC-9418-BF0A674A2B2F.log.OC9oMrMV8	data	670B5C3C5AE68DB09E7D24C68932A9BB	6911254D6075CDB1553E7873A998D623E8844536	51EF3142C98FA728DE5A7C24B59BB8C2D43411E0AE269293A3F5DE8DD8501AE9
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417101742322600_290EFEE9-C25A-4857-9F32-D7E6D51B7C09.log.OC9oMrMV8	OpenPGP Secret Key	EF8C282EA8353FCBF053245F20E4DF54	14FC2BFA92EC9AE5CEA5A1BD61BE66278710F594	54B392E13690234223E10B6B2953AED10BD0332E303287296C1319EF9705E25D
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App1696417118050662300_8475A8C9-2447-4BC4-8E46-350AA0582B94.log.OC9oMrMV8	data	232CE9A985BE6B194C33E636F706B419	D49D32566C857811B7911FDCC5148FD48A3D570A	C5FE59B5706855D5291F2A5CFBF8FC48F7561D89B282BFFB3A6179691502CFCD
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\App_1696413198165042300_AA3FCB9C-CF1A-4407-8A94-A7D6C220021F.log.OC9oMrMV8	data	AE30E2D5CF3BA74FB47C8EF956A7A929	52D033380C6B0FCC1DAFCD3603F6FEE1377585A6	E3D0B4FDB1D9C6334B3C6CC0D5717C9F3825F7233042CAA5807EEAC0B33B3DA3
C:\Users\user\AppData\Local\Temp\Diagnostics\EXCEL\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Diagnostics\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Diagnostics\ONENOTE\App1729920445649056100_AE9852A9-9E8F-4980-88FE-71C30F24479F.log	data	8880BDDBDC8B53A11FEC5E74E56D7186	CE9F35BA18DAE4A5B569250828B08AE5CB8B6EE6	F9B9E15AA90D1FDCB8348B2084AEBA4179512ABDBC77D84B89BD08E4B67F62DD
C:\Users\user\AppData\Local\Temp\Diagnostics\ONENOTE\App1729920445650063200_AE9852A9-9E8F-4980-88FE-71C30F24479F.log	data	8F4E33F3DC3E414FF94E5FB6905CBA8C	9674344C90C2F0646F0B78026E127C9B86E3AD77	CD52D81E25F372E6FA4DB2C0DFCEB59862C1969CAB17096DA352B34950C973CC
C:\Users\user\AppData\Local\Temp\Low\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Symbols\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\68A17FAF3012B7846079AEECDBE0A5831\download.error.OC9oMrMV8	data	F1D0A1468345CD6588B67CDA69A17919	1494FB719B3B56F720110AD82A4AFFF986B39F00	BCD34397ECA313DE56D35F6BB939F0B0C80596293A23BB703624B1CCA290F8A5
C:\Users\user\AppData\Local\Temp\Symbols\ntkrnlmp.pdb\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\01AB9056EA9380F71644C4339E3FA1AC2\download.error.OC9oMrMV8	OpenPGP Public Key	5814DC0050AE92C74DAF37D006EBB237	7C6B4D5662867BB563FBCCE33CA18A9DC8722569	AFD53AAEF60E97F80BAE47F96D5FED0AD783125FCBE39B106C4510399D038BFA
C:\Users\user\AppData\Local\Temp\Symbols\winload_prod.pdb\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\Adobe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2023-10-04 13-00-50-743.log.OC9oMrMV8	data	EA34AFE194378765BBA362483EEB1CE2	F7987D3DAFD121B373B82FD566DDF87726F1A04D	5AFFC53DA06BFB6FC3FC8CF45CF9E8B3F87EA32FEE911434D518A38CEB1CFBD0
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2023-10-04 13-01-22-078.log.OC9oMrMV8	data	E07DC0611636F98968CB275726DA7F8C	9FF1ADB62098D30B3AB1A2A73737C3F5C8546B81	3D5DE7C0A7BF18080C86E0E5C2C74CE01255AF729395E9EFCB862860BDF62C44
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log.OC9oMrMV8	data	2C287ACDE8DC5BF2FC6EDDABE4E2228F	E7E7A5EEC13D3B55F42D732426463B3F57B45011	BB3BA01FEDC5DB14533FCF5DAC5CBF04A9001060027F7163579502B08DCAB73A
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt.OC9oMrMV8	data	8BE34330CC00189097F4D7D7C85F3B18	EAA2254CF0464C1F5BF4C24211411622B7607058	93C0C3B58334BB9DF624B40B7630A8D68FAC874F120862C499DDD299107EF1F1
C:\Users\user\AppData\Local\Temp\acrocef_low\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\DC\SearchEmbdIndex\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\Adobe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\acrord32_super_sbx\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\mozilla-temp-files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Local\Temp\wct3D66.tmp.OC9oMrMV8	data	E09E621845F02B5D9DFFE5C16FFAA5E2	B1E12AFBB55F0DAC22F5B63421539F8D28DC272C	ABAFB77AC28C30477AF4D9C3682E42F01DC60D019ACD1579A10DEC4FC6FCA1C6
C:\Users\user\AppData\Local\Temp\wctEA40.tmp.OC9oMrMV8	data	762F6AA5B0187976AB40CF547BF08124	AC01A5C4542AC74DD5E1D15654490D5507C91191	777F0445ED849A89FC34BAB22629D6EA81A61845CCB1460DDB05E90B8F04CA2E
C:\Users\user\AppData\Local\Temp\wctF86A.tmp.OC9oMrMV8	data	202D86A33108418069B238E43CF4229B	5EF4BD4B83147E80165C087693F0C54A5DD867B3	24CF568B978A8D21B1EA3E162468DCFE551BB0AF7C90879EC30618E5D765E852
C:\Users\user\AppData\Local\Temp\wmsetup.log.OC9oMrMV8	data	8BF3B93447D5287AF8016777F19D1976	EB62868AB72EF1263912F247F9046C0755D18CDF	9E7C4036C9BB5C52234247494035E13421105F2BB2B5C917E0280F4F96674BF2
C:\Users\user\AppData\Local\Temp\{00F7909C-36AE-42DE-953D-757D1DB00B7C}	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Temp\{02662522-698F-45B5-959E-0EC7B36298AD}.png.OC9oMrMV8	data	761CD3FB9D7AC4F0F4694AAB6EABB70B	93E9C6AEF86EE0ADF82BFFD5849394BA30056160	FA05947926CEC9D6F83D2887707EE3C334B092BF8CC8A593172292C1B8514DE2
C:\Users\user\AppData\Local\Temp\{04E225CE-C02D-49FD-8981-7C472E26B96D}	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Temp\{05DF8F26-DD99-4E76-B40E-106290086E25}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:44:07], progressive, precision 8, 611x163, components 3	9C205C8D770516C5AA70D31B2CA00AF3	9A1002F0CF7F92F1BE2BB25BAD61CEBFAC282482	E111F96490755C7D71E87C88ACAEA38AFE55BB865B1A14A83C5BD239648D5E2C
C:\Users\user\AppData\Local\Temp\{0D2347D3-5855-498D-AAAA-FDDA50F142C4}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Temp\{1176A1C6-FBAC-44CD-9B82-BF9C783EDFB6}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:09:29], progressive, precision 8, 609x675, components 3	B4F0A040890EE6F61EF8D9E094893C9C	303BCBA1D777B03BFD99CC01A48E0BB493C93E04	1F81DDE3B42F23F0666D92EBF14D62893B31B39D72C07AEE070EAE28C2E6980E
C:\Users\user\AppData\Local\Temp\{129E1563-30C4-45D8-98A0-0F6C493728E7}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Temp\{139BFC28-947F-45CC-9DE4-AB0FCAEF6E9F}.png.OC9oMrMV8	data	4909822D5134194AF3B5C0515053A039	633E288D201D00DF06211831E484F4952CDA650F	9E8EE80DEA4BBC113317304492F4E04DC98B326ADD475E74D46EAF88B6E08CB7
C:\Users\user\AppData\Local\Temp\{17555EEA-D787-4D22-A748-93E5A536483E}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:10:32], progressive, precision 8, 594x773, components 3	C594A4AA7234EF91E6C2714CFE1410F1	C0F720D4CE3196852814D0B7347F0CAA0C6FD526	10C833E47BE1C8496F949A6B059C2D79212A4DD66BDE62116EA337FA4FE0B654
C:\Users\user\AppData\Local\Temp\{1C24B0B8-E859-4D2E-9C5A-A9AF7ED40B4B}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Temp\{20DFF0D3-A03B-4185-8653-CF1A4E8774F7}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	8D804A60E86627383BED6280ED62F1CF	E23FF14B10AD0762DD67FBA3CD6EFC85647C0384	494547E566FB7A63DD429EB0699FE41AA8998F8EA2F758D813FE3D56C3075719
C:\Users\user\AppData\Local\Temp\{251B1BFF-B0A0-457D-89E9-D7F367FF5EE8}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 728x77, components 3	B23DE98D5B4AFC269ED7EBFDDECE9716	10AF507A8079293A9AE0E3B96CF63A949B4588AA	646586CB71742A2369A529876B41AF6A472C35CC508D1AE5D8395D55784814F2
C:\Users\user\AppData\Local\Temp\{27888DC9-3B9D-4E9B-B5C9-73757FF18E5F}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	39FF3ACAE544EAC172B1269F825B9E9F	2D40DE8D90BD21D56314D3F99CEF4FBAE3712C0F	70475431CCA3C91A4EFA3B8F04864371D2D3A45696674A1A0562FE9CD8DB287C
C:\Users\user\AppData\Local\Temp\{2937AEF9-F9BC-4006-AFF9-D04062B9266F}	PNG image data, 171 x 552, 8-bit colormap, non-interlaced	E1B57A8851177DD25DC05B50B904656A	96D2E31A325322F2720722973814D2CAED23D546	2035407A0540E1C4F7934DB08BA4ADD750FCB9A62863DDD9553E7871C81A99E3
C:\Users\user\AppData\Local\Temp\{29D85146-8F33-418E-9CB9-9BBABEB27360}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Temp\{2B9B0FFA-B629-4B1F-8158-8939E7592189}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Temp\{2CC324D3-4226-4DC4-8B86-C307F78E3BB3}	PNG image data, 39 x 579, 8-bit colormap, non-interlaced	E96BE30D892A5412CF262FEE652921CA	8190A0BFE21D04BC6F3A406E91B87CA69C03A2DE	0E31DA4DFCFF4A36C64C1CE940362D2309769F36369E4C43C317D5F2FA15658E
C:\Users\user\AppData\Local\Temp\{2D06D598-BFFA-4665-B453-F1BCBED50422}	PNG image data, 50 x 600, 8-bit colormap, non-interlaced	2494381A1ACDC83843B912CFCDE5643B	98F9D1CC140076D1AE5A9EA19F47658FD5DF0D66	5EEBE803E434A845D19BC600DF3C75E98BB69BD0DE473CEEC410D1B3A9154E28
C:\Users\user\AppData\Local\Temp\{2F1A57D0-AEF4-4750-971A-4B01AC86FAE1}	PNG image data, 40 x 623, 8-bit colormap, non-interlaced	07DB3F43DE7C1392C67802E74707DAA6	C173ADB1999065C5E1E6DBEF934B4D4D7AF0CC23	51E05999A1C9F17DF28CB474E57DD8E64BDAB824874A532C20A23766A01F8967
C:\Users\user\AppData\Local\Temp\{300091C9-114C-43DE-9BFD-E5E2B3E86166}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 14x341, components 3	A994063FF2ABEB78917C5382B2F5FA8C	BD5C4D816B04A2B6596DFE38DB01228F553FACCC	D72900E8DA72D1A7F3729971AA558E1E9B6E9CF9A0D51E83852E567256DBBFEF
C:\Users\user\AppData\Local\Temp\{340E551F-6881-4BC4-A440-67D4D9631A30}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FEE4785DF76E93A9DC2F4501CBAEAE12	8FB4527BDE05EF208FCDB168098A07707C27501F	F091DED5E283AF6848670A3172E7C43C6099875D39B3FC69C2BDBA914F609602
C:\Users\user\AppData\Local\Temp\{367F9E1B-645F-4FFF-9C4C-F895E8A611BD}	PNG image data, 176 x 513, 8-bit colormap, non-interlaced	8E9AB9C28B155A66BC5C0DA5E2A4EFB5	972E61F162D48F1CEE21963ECBB2FE439105DB55	B243A24FA13BC8523450E22F408F9EFF15301C938F8CA52A57018B58CE6785DE
C:\Users\user\AppData\Local\Temp\{37ADCF02-90E8-48CA-9C87-805141B72049}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:15:20], progressive, precision 8, 604x784, components 3	CC087700C07D674D69AFDFDA0FA9825C	F11113DF69DACDB255C6CBCFB29C1D1CCE40B346	A7FA7F092EFF43030A56342C39A765F8D5CC48C7DB815DDFC8C1E5EC40117FAE
C:\Users\user\AppData\Local\Temp\{39E4B34C-9C13-44A0-B8B3-7F1893D52B26}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Temp\{3A8BFC09-766D-4764-98DC-CEB4BACACEA6}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4A2472AC2A9434E35701362D1C56EDDF	16FA2EA2D2808D75445896E03B67A93000EEDDD8	505F731CB7707EFAB2EB06685B392DC7E59265A40B55AAE43E5DC15C0A86CBA4
C:\Users\user\AppData\Local\Temp\{3B29B46B-A692-48BE-B171-BDD3C4A7CE61}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F8CCFC24DEB1D991EBE085E1B2D7D9BF	AF76C22A765434AEDA134924C517C84107F4FED5	7354001527AB554C44E7D6981B86DD933B7DC2E0D3DC8512AD3EECD843245C52
C:\Users\user\AppData\Local\Temp\{3C737208-1AE1-412F-A027-50E1DBB1D536}	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Temp\{3EA46DD0-9A0B-4E9A-AE76-31CD179E0BFD}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:27:10], progressive, precision 8, 102x792, components 3	1122BF4C2A42B4FA7F29D3C94954A7C9	3750077A830FE21735A43ABD35C63BA9A4D4B0DE	423B0DD1A93B391D15B1DC8D8757C3BF5725FF2E7A59E6E3140033E2876B67F6
C:\Users\user\AppData\Local\Temp\{45AEFB37-523B-4A10-AA78-9A412DB4892A}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:12:29], progressive, precision 8, 598x766, components 3	EC7811912ACA47F6AEB912469761D70D	C759BC2D908705D599B03BDB366C951B11F99A4E	FBB4573E3BEE1B337077691BEBAE15D6FAC52432405D31396D526D7694A8283D
C:\Users\user\AppData\Local\Temp\{46E361F1-B159-4D5B-9596-28F1A415461F}	PNG image data, 77 x 627, 8-bit colormap, non-interlaced	FA38AFA965141EA3F17863EE8DCCDE61	2B4611E651AF7549C1AA73932B1136B561A7602F	E1CB1A0EC9BE62D5445C73AA84DF38234002A7E164EE830C9DF24997802CB5D2
C:\Users\user\AppData\Local\Temp\{4A1756C0-19FF-4D7A-8E3B-D02BCC233712}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	B1DDD365D87605F96D72042CB56572F6	ADF71DAD1A62B8A58A657C2EDBDD665A19EB846B	06E09DE80C3F32254DA4FE6B2CBAD7C05EF144DD54B8C65745E195BBF7317A2E
C:\Users\user\AppData\Local\Temp\{4CF2717B-41CB-41C8-A122-90F6EA496938}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Temp\{554D933D-4845-4799-A941-02C31F056162}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 276x139, components 3	5D6C1F361BC04403555BE945E28E53FC	00C254F7B3BC0289590C2BBDBB39C8EC2E2B2821	131D637CDC5D0B094FB9FAD17F4D2A1ACE0D03613588155AACAA2D1CB4E16DA9
C:\Users\user\AppData\Local\Temp\{5871238D-BEB9-464A-931F-701C8F0FFB10}.png.OC9oMrMV8	data	CEF4BF2E7BDE8B3A8DB95509A8750C18	65D2ADF5130A3FBC0C59C6B829FF1D3836ED8C69	FEF9920BCED26BB8F890AFB9A7B19B9DD074389593903EC62285F5AB625E30B4
C:\Users\user\AppData\Local\Temp\{5A89B62F-FBF3-4086-BC0B-4B81FF7B29AC}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Temp\{5F969F84-5F34-4AF8-8D36-D6D6A1668750}.png.OC9oMrMV8	data	9049D71FF036CF4EFBD9C7C0A80E9295	E3B498FB5CF8E9498CD113D6AC239354D110C07A	F4A2FD8E6E9DBFB4BEBB237EAA1D2799FAE2619E2154E56986172A3EC1A70BFC
C:\Users\user\AppData\Local\Temp\{5FDB6493-D269-44CA-9819-79B639D621A7}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	1271B1905D18A40D79A5B9DB27EE97EA	9618608FBD7342DE6C71220A36C3F4995BA9C13E	5B321A4D81BD499B289B1755F6450A42047C494DFBC112DBD56DA4CED2C15C1A
C:\Users\user\AppData\Local\Temp\{65E68552-D263-44AF-9B35-0BF656084DDA}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 105x441, components 3	09A7AE94AA8E517298A9618A13D6E0E2	FA5181A7414BA32F816BF0C4278EC20C615E8B1A	3C68C7EE798E62A4A99C740153F3980D7DF029605C843410942C7F85E794823B
C:\Users\user\AppData\Local\Temp\{66B87DEE-14DB-4260-BF3E-A4B7357BA677}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Temp\{67E9422D-198A-4561-8E9E-19FCD5C8ECFB}	PNG image data, 60 x 336, 4-bit colormap, non-interlaced	78762C169F8B104CB57DFF5A1669D2DF	9638B71B584CD636834016A635ABF8D9C0887711	E64FDCD0B108737D8B8F7B677029F924031D6BBAA50585D9C3DEF7C7E92ECAF2
C:\Users\user\AppData\Local\Temp\{6D7544C5-33B5-4565-B35C-48E7EE5F47C1}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 814x105, components 3	4BCCCDBB4273ECEBE216C84930A8D0B2	FFBF617787E27BC94D9BAF89F2FE34A2BD42794B	474F9A8C25D5E21192315397EA995B1E11E2C1608157C6E0277688091BFD136A
C:\Users\user\AppData\Local\Temp\{6DEFB54A-BCCF-4BCF-8501-C38E58EBF9ED}	PNG image data, 30 x 700, 8-bit colormap, non-interlaced	0BA36A74DFBF411FAB348404CCEC3348	4C619790E517416E178161028987DF1CD3B871CC	2E7AAF26BEC32148B96442E8FFF1BD2CEF2D72630969F23B9A2ABEDB6CFEC93B
C:\Users\user\AppData\Local\Temp\{6F6CE515-BC56-4005-9680-47B400AA15D4}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Temp\{70083709-ED67-4AD2-9B2B-9C66F6B01ECA}	Windows Enhanced Metafile (EMF) image data version 0x10000	ACF4A9F470281F475EA45E113E9FB009	B20698DDA5E5AFDD86BB359A6578C9860D5DF71F	5DC2367A80588A7518DB5014122510BF0FD784711015EF83A8718336584F82D0
C:\Users\user\AppData\Local\Temp\{72B2CE4C-8908-458C-8D08-BC45CBD639AB}	PNG image data, 177 x 123, 8-bit/color RGBA, non-interlaced	8B48DA9F89264D14B83FF9969F869577	E1BD58E2D80FEEF56DC514F3F0B3AB9669F22F95	62AD3C277E54F03F1ADB44062407346F789E63859B7AFABFD64BE6AF5E9F66EC
C:\Users\user\AppData\Local\Temp\{78030068-F79E-4F7D-A73C-754228D0356F}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:06:24], progressive, precision 8, 38x792, components 3	2D3128554F6286809B2C8E99DE5FD3F6	FC42CB04151D36F448093BDEFE33031A9B8D797D	14FA2D16310485AA1CE41F6D774A3D637E8CF8B03C4F72990155DF274FDB6BD9
C:\Users\user\AppData\Local\Temp\{7DBD80C2-773C-4B2C-97C2-4AA866E07BC7}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:19:29], progressive, precision 8, 221x792, components 3	3CD906D179F59DDFA112510C7E996351	48CDB3685606EDD79D5BCDF0D7267B8B1CCBD5A8	1591FD26E7FFF5BE97431D0ED3D0ADE5CFC5FA74E3D7EC282FD242160CE68C1F
C:\Users\user\AppData\Local\Temp\{811963DF-A201-4C20-BE6C-2500BD8AAA8C}	PNG image data, 3005 x 184, 8-bit/color RGBA, non-interlaced	5C859FF69B3A271A9AAB08DFA21E8894	3156302A7450ADFF4D1B6EC893E955D3764D4DD4	B4A8E9A67EE0B897615AC4CCE388FFC175AB92D9E192E6875C79A4E7C1B5BB6E
C:\Users\user\AppData\Local\Temp\{8281D11D-AE10-46DD-B7E0-F1969D623257}	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Temp\{8347F72D-77D5-4531-A9F3-3DE7DC8DC8E2}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 17x608, components 3	4FC8500BD304AD127AF4B5E269DFF59B	9A5E3432358A0FCDECE86AEB967319B93A65D14A	B4DAA90D5A53FCBC85119050B5B76962443C4DD18D7F42CDC6D4E0AD8EFAD872
C:\Users\user\AppData\Local\Temp\{8AA733BD-75C6-41E6-BB85-57B20C624C0F}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 95x498, components 3	D9BD80D40B458EDB2A318F639561579A	83BA01519F3C7C1525C2EA4C2D9B40F28B2F2E5E	509A6945FACFB3DDC7BE6EE8B82797AD0C72DB5755486EE878125A959CC09B59
C:\Users\user\AppData\Local\Temp\{9D84A236-CB39-45C3-A3EC-C7FD1686CE8C}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:11:38], progressive, precision 8, 577x757, components 3	37EED97290E8ECB46A576C84F0810568	18D9FACB4CFA3CBF63B882CABCF30B203EDF4126	140DD943D0F0CFE6AAA98470B7D1A7CB62CA02CB1D8F522DD2AC77433232EF41
C:\Users\user\AppData\Local\Temp\{A21E30C7-CD00-4E23-9558-EFDA61332664}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:13:06], progressive, precision 8, 570x779, components 3	737E96E41D79D3BDACE7AB4F8CBF6274	E6202A41A4F86B27D9EBCAEF7670B16C0ED67CF2	7966F3D8A2D61ECB49A35E163781858E052C0B122A18A1238AFE27B57E2850E8
C:\Users\user\AppData\Local\Temp\{A239D576-15DB-412C-A77C-AB8DC2B83901}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	9700DE02720CDB5A45EDE51F1A4647EC	CF72A73E1181719B1CC45C2FE0A6B619081E115E	7E6A7714A69688D9FFDF16AA942B66064A0C77FCD9B3E469F89730B4B9290C3E
C:\Users\user\AppData\Local\Temp\{A33B07D7-E1B6-48D7-83CE-607BC93A4EDD}	PNG image data, 39 x 600, 8-bit colormap, non-interlaced	F6C596F505504044DF1E36BA5DA3F09B	BCF17EC408899B822492B47E307DE638CC792447	EDBB86F160050FBF1F9860276802BAE292DBFD0BC98E3EA90D43D981E9F0C54A
C:\Users\user\AppData\Local\Temp\{A510E7DB-48C5-4990-9F9E-E36A34645426}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 262x277, components 3	8A5444524F467A45A5A10245F89C855A	ACE68D567B02B68275E0345C86DB1139C0EC1386	7D2B01F17354D9237A6AB99D5B9AFDF0E1CC43687125848B0C2DEDFB44CE3843
C:\Users\user\AppData\Local\Temp\{A9068A28-DE83-4225-AB1B-8BA9A8CC1121}	PNG image data, 189 x 305, 8-bit/color RGBA, non-interlaced	2628353534C5AD86CBFE57B6616D46DD	244B7E39D6CEF5B07FCDE80554D31F7DA240BB0D	69BDB000AC7E030B0B28E6CE78F19547D235355B3B841146951AD1294429FA51
C:\Users\user\AppData\Local\Temp\{A9D210A4-FE8A-4C64-9C4E-2087011AFB02}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4E131DBFEC5C2462273CA7B35675B9D9	CA037F444D819A118AC37D7AA3782B9BF94C1616	2A4A3530D652E227DDD5ADC096A95F6034718F7C380B07DB622022D768815059
C:\Users\user\AppData\Local\Temp\{B07FF8DD-724F-4807-A5C2-998B357214A6}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 613x144, components 3	DF99CAAAB9A7DE97B63343E60A699AB6	B84334135CFB73BC6EF55F85926770D5AC6DFEA8	74C131777E7C437FD654427417097BC01B0813BA8E1E50E4B937BD50A1BEBCDB
C:\Users\user\AppData\Local\Temp\{B112109A-0945-4257-88B0-EF745F6A7A85}	PNG image data, 85 x 470, 8-bit colormap, non-interlaced	DDC3CC30794277500EFE4BC6667EC123	EFC9642C1F95B5FC38764476AE481649C016FA0C	7F5B660A1A0BF46C75AAF19B4F77A0E086DE003EC03AFC1F58D871D55AA5BA9E
C:\Users\user\AppData\Local\Temp\{B27AF2B8-5C47-4B22-B48B-289433794E7B}	Windows Enhanced Metafile (EMF) image data version 0x10000	DD4CA4BC0A73FCB71BEBAA3C29CB8F66	1A7085771D7941540EC94A1BD24D7CC8EA556D4B	0401451E1D1D7DFDC29AD1B2B68A6C8AC0B706E9868BF22FAB26A01CD48620CE
C:\Users\user\AppData\Local\Temp\{B2D8DA2B-38CF-4475-8837-1716AE0C60F1}	PNG image data, 50 x 500, 8-bit colormap, non-interlaced	CA7D2BECCBC3741D73453DCF21D846E0	E34B7788498E33FFF0CFB00125E6BA9E090F6CED	E9EAD0BFC09D32CB366010CDFEDE1C432A2D1D550CB7332BADAC1BEE9482BC86
C:\Users\user\AppData\Local\Temp\{B428EC84-0A79-4A55-BEEA-EE223032B26E}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Temp\{B69DB4DB-BB5C-4345-99DF-4A61CDA9FB29}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7379775A1E2AB7FAB95CFFCE01AE05F3	3D3DDFD8AC7E07203561BAE423D66F0806833AB3	9301DB6D2D87282FCEE450189AEACE16D85F64273BF62713A3044992B6B7A9E9
C:\Users\user\AppData\Local\Temp\{B9A70756-7F19-4721-B52C-775807135970}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	E9C52A7381075E4EBC59296F96C79399	BE295AD24D46E2420D7163642B658BF3234A27EA	D56CEFE9EE2FAE72E31BDBA7DD2AA4426EA22E3CEB22EF68C8F63F9F24D5A8BC
C:\Users\user\AppData\Local\Temp\{BA25ED98-22C6-45FF-AF80-25B442515D3B}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 700x114, components 3	DB8A181E3F0EAD4A9472099E42ED6BE3	92096AF05CC6167B1AA816811A1160B809393FA2	E9746B4E9AE9CE7B3B0068779DB3E113E2DFC9880F25373D745D0E700E69A906
C:\Users\user\AppData\Local\Temp\{BA2D1D32-EA88-4862-991E-23BAF0D53F96}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Temp\{BE3E713F-5E63-402C-8C01-EB2B4623698B}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 70x626, components 3	EE9E2DF458733B61333E8A82F7A2613D	A86704C969F51B86D6A05ED51C6C60214ED9FA89	BE4F0E6C89FCE91B9EBD2623567F7DFC259E0E3C77C9158742B8F64B724DF673
C:\Users\user\AppData\Local\Temp\{C3CFFC92-8266-4752-B9FC-61D6BFA74240}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 780x107, components 3	7C7D9922101488124D2E4666709198AC	00CC44A1B84D4D94A0ACE8834491EB5F65D04619	20016E5FA1A32DCE5AF4E92872597E36432185A7BB2E61C91F362BD68484529B
C:\Users\user\AppData\Local\Temp\{C5653280-81B4-4EB0-A6AB-519F57B879C0}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Temp\{C87DB444-FF1C-4219-8F65-A08843663B95}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	D58C51D2CF586A5E14A9EC8529C3B0A8	F4811A353797C29B1E3F5A61B125C46E1534D587	F927C7825851974A2149868146970706523A49165133CEE6027A43E8C9ABDF27
C:\Users\user\AppData\Local\Temp\{CF449BD9-AAB5-4F95-8962-5DC2956F4C9D}	PNG image data, 88 x 574, 8-bit colormap, non-interlaced	1BDAD9B3B6DE549162F9567697389E1C	5D9C09159F07A3A9BDCC6C4B9BD9CB72D0184E6F	0908A4CFA23F93011176D47F45843E9CA2973030421996E8E27484781F54B0EC
C:\Users\user\AppData\Local\Temp\{D0B983C8-AD18-47BB-AD7F-332237AC78B3}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 76x97, components 3	14105A831FE32590E52C2E2E41879624	078FA63FC7DB5830E9059DF02D56882240429D90	D0A3A1C3CD63C4023FE5716CBE2C211307D0E277E444D9EF76C7FC097A845FD4
C:\Users\user\AppData\Local\Temp\{D2377890-9176-45C2-AA68-974C01D6AC13}	PNG image data, 50 x 556, 8-bit colormap, non-interlaced	B7F74C18002A81A578A4EE60C407A8D3	70A7D4BB1B3ADF4397D168AD0D81B286F88EBDE0	95F59A0433050180D4C0E8858B83363D51BEA6752A8B7CA516A8677854D8F5B6
C:\Users\user\AppData\Local\Temp\{D35D375F-B16E-4F11-B312-FC966BD8D79C}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:26:15], progressive, precision 8, 216x792, components 3	864EEA0336F8628AE4A1ED46D4406807	CFCD7A751DFDBE52A20C03EE0C60FDFFA7A45B93	7CE10D1EA660D2F9CF8B704F3FAB2966A4CE2627D9858D32C75D857095012098
C:\Users\user\AppData\Local\Temp\{D76008B8-3C1B-45A6-B4A8-0B50C7B0CB4A}	PNG image data, 40 x 650, 8-bit colormap, non-interlaced	DD876AA103BEC3AC83C769D768AD39FB	1833603AA9B6A7E53F9AD8A336F96CCE33088234	1262DD23AD54E935CFA10FEB1BE56648E43BEF1116696CA71D87E6E033B1CA7D
C:\Users\user\AppData\Local\Temp\{D9E473E2-653B-4FB4-B38F-D9636DE2254B}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:08:07], baseline, precision 8, 595x450, components 3	DCDD543A4E0BA2C1909BA095D46FFBCB	B86C89537138FE07255354202D3EAD0B53B3C54D	28F334B77068F71F5F92A95695433B950610204A0E5580CE567DB8FAD4993ECB
C:\Users\user\AppData\Local\Temp\{DED2407C-8BC7-4445-BB33-9D56608D872E}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	4126992F65FE53D3E3E78F6B27FD49DC	BC0D76B69310DA9B909D3EE4CECBFE5F386BFB45	3FBE3C1C238BD7DBC67F8CFF5F3BDDFD513C96A9851B9616477947D21DFF4B2E
C:\Users\user\AppData\Local\Temp\{E049DDDB-499D-46A3-A9F0-3343F967B2D0}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	47ADB0DF6FDA756920225A099B722322	851946B8C2BD0BB351BAEECA9E5BB6648A87D7CA	EC8CD7250F3D82E900E99114869777EE859EC73EFFABED108815F65742078C3A
C:\Users\user\AppData\Local\Temp\{E2A6ACC0-6E92-40AA-8026-0824922E5FBE}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	CB84C108A76C2AFFCAC2551A3C1EAD56	8BB7C2A12B056C1ED12EBBAE5BC9F60CCE880FFE	139BB0E79F89C3DDEF79B1716A5FBAB4C07DF5785FB3CDF6B4EEDDBF6C078452
C:\Users\user\AppData\Local\Temp\{E2BB0903-C126-47DE-A6E3-8E217AC14A02}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Temp\{E4184D9B-DE7E-4A72-A9BF-7663805899BB}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7A450E086AD14BA7D89BA5DB3D3AE6C7	E7AEAFCFCE476390E18C19456BDF6529D863D518	BDD997068701ED3A00A224EB694B003C01AC69B857FE7B4147D6C34875B1632B
C:\Users\user\AppData\Local\Temp\{E982B334-82B1-4B1D-9484-C3090576F531}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2004:03:12 11:05:55], progressive, precision 8, 612x618, components 3	41241EE59AB7BC9EB34784E3BCE31CB4	98680761A51E9199CF3C89F68B5309FBEC7EE3CB	035B26DF61855A3F36DBD30FDAB0C157C04C9E8AE2197EA4D4AEB3E82E6A4C2B
C:\Users\user\AppData\Local\Temp\{EBAB2686-9D7B-42C9-A89B-54016439E0B6}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	AD003F032F32FAC4672D4CE237FA5C5B	AE234931B452F0D649D91291763B919CF350EA49	ADB1EBBE18D6CD8FF08AA9BF5C83CDB83BF9AA179698E34E93DBCDDE12F04D32
C:\Users\user\AppData\Local\Temp\{EC7FB443-BF89-4E86-A9BE-7B6110B34626}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	F25427EFECFEE786D5A9F630726DD140	BC612A86FF985AB569ED1A1EA5FFC4FDB18FC605	5A36960DF32817E8426BD40A88F88B04FB55B84BAEF60F1E71E0872217FDB134
C:\Users\user\AppData\Local\Temp\{ED6AFB1D-468B-47F9-8399-AA9223854E12}	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2004:03:04 13:18:09], progressive, precision 8, 164x641, components 3	E62F2908FA5F7189ED8EEBD413928DEE	CA249B4A70924B73BDA52972E9C735AEC35A0C5D	20ABE389C885E42B6EBE9E902976229BB6FD63C8C34CB61AA70B8B746209F90A
C:\Users\user\AppData\Local\Temp\{F00895AD-20C9-4E91-8B62-F1EE9E492757}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	177DD42CA99CAA2CCBF2974221680334	35FD86B3DD082A6D4930C67BC0E05D3B5817465A	525A857D0EDA855A64D3619DF58B1C2D013A73E60FA0D49B155ECFCB2C134C7C
C:\Users\user\AppData\Local\Temp\{F1D1AB73-4939-4965-850B-416C36882217}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	2EE369ABB7936F8C28FF0ABDD224EA05	FE9D304A7B49E31EAE439369ABC548E265149636	FB12D59B8BE911247BBAFDD416852E8B74B028005A141CB4DBBBA109B4B6ED2C
C:\Users\user\AppData\Local\Temp\{F3D80F58-4B21-40AF-8828-1753CD926647}	PNG image data, 40 x 617, 8-bit colormap, non-interlaced	3E675D61F588462FB452342B14BCF9C0	86B62019BC3C5BE48B654256B5D10293FC8C842A	639EADAD468B6B32B9124B1F4395A8DA3027FF7258D102173BA070AE2ED541AE
C:\Users\user\AppData\Local\Temp\{F4378CF8-B18E-4790-B5FB-ADB2AD5570C9}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	FFA5EC40DC9A0FD10EB9E6355142D6A6	3D3D6A7E086B3C610C08F1F3E3F883604F06F2A4	D74C3973C8D1F7C77274691AFB1AA934940674341D7EEE563BE75E563281BDFD
C:\Users\user\AppData\Local\Temp\{F4B29680-E065-43E4-A523-7A544007FCEB}	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 612x792, components 3	7CDCE7EEBF795998DA6CAC11D363291C	183B4CC25B50A80D3EC7CCE4BF445BCFBAA6F224	DE35AF949D4F83E97EE22F817AFE2531CC4B59FF9EE6026DCA7ECEBC5CF2737F
C:\Users\user\AppData\Local\Temp\{F5FB9468-1713-4BA9-BB19-6C93B1DD2F70}	PNG image data, 813 x 99, 8-bit/color RGBA, non-interlaced	EA45266A770EEA27A24A5BB3BE688B14	9F0B23B3C8EBA4FC3C521E875EF876FBE018F3C8	EDAD0F03E6FF99FEF9EF8E8B834CE74F26CD23C5F8C067F5CEE66F304181E64D
C:\Users\user\AppData\Local\Temp\{F5FDDEE8-88CF-4681-8F4A-D6E863C2ABB7}	JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 814x45, components 3	943371B39CA847674998535110462220	5CA79B7BD7E0E93271463FAEF3280F1644CBA073	9C552717E8D5079BBB226948641FF13532DF3D7BE434C6CE545F1692FA57D45A
C:\Users\user\AppData\Local\Temp\{F84DD0BB-815C-4D4E-BA52-4813AA93AF44}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 357x69, components 3	8470F9A96B6C6CAD9EE60961E96D19B2	AFE1F01FFA4E4CB06B1D770C9C59DA75B434D1AC	2DF453410796AEC7B9EFEC00059B6CE64BCF67313A95AE458BA600EA5DE14811
C:\Users\user\AppData\Local\Temp\{FF964046-741F-4FC8-94A7-F007A809F2A5}	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 69x630, components 3	02775A1E41CF53AC771D820003903913	2951A94A05ECF65E86D44C3C663B9B44BAD2BC9D	83245F217DEAE4A4143B565E13C045DBB32A9063E8C6B2E43BB15CD76C5F9219
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Collab\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Forms\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\GlobData.OC9oMrMV8	data	3664A06A0D3DC26CF438DCB2BC879890	AD7E6B7D3CEB1406CCE8F342C43833DBF6161CB6	5E76719E6E2DC1E69E793F4D5DC00F8D30574B0D0BAA76642D0B27D39338B40E
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\GlobSettings.OC9oMrMV8	data	B539138C5EB1AE24885E23C919A7B6B9	0BFD88C57B2D53AB39893CFC839A971E11CA41BC	BFAA01A0F3585DE1EEF271875EDE8B43A91DCD71CD3D2B26F569D7DCEDAF0069
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\915DEAC5D1E15E49646B8A94E04E470958C9BB89.crl.OC9oMrMV8	data	D9154F822133606AD393BBCC9267EBCB	163FE63E2EFE95A8D04CFE2B3C523DA4E3D78216	981916E6B2C6E0BCCD21401ED79ADBDDB0E371BB4CE16CCE715219D5173C698B
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\DF22CF8B8C3B46C10D3D5C407561EABEB57F8181.crl.OC9oMrMV8	data	86784B62692DE765237FB308553CD7F1	941CED86CA02136BFC4786BCD139044C00F810CB	E624F7DDC7502304728D088BEBF1A91DB30D9EB5D7FBE62891EDF17C6F20A404
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\CRLCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_store.OC9oMrMV8	data	0CF6FA9935BEBF485DC71B879C4BBB7C	06DB58A4725E1BA96808AC2A5A6C7EF97FCCBAD9	4A188441B89278FBE06C3434995FED73C18385071D32855C97AC6EA2ABC4A3A5
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_storei.OC9oMrMV8	data	40948E4F9920FFA61D2289559FA1DE60	C40A3B36D471B25F4C947259614C725141485395	99A66CE81D481B6AC869181A3D27A4CA16EBA7CDB487EFBBD1B62B6C1D161712
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_storek.OC9oMrMV8	data	237F6081AF94F906335C14AFA47F4D63	07BCAABE0ECE1324A2E01122D58F046C313DE13A	FD69DFBA73A807A0422DD1CD18FCEF207B10C114BE3A15DEC11167D0147D17F5
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\addressbook.acrodata.OC9oMrMV8	data	7E28179EED5676E8A061C247D06246D4	B9EDE90E6080A652402522A95AE8BBD02237B058	795225A16CFA82F1DEC8F0F311838F6E5176CFBA941EC4A2A4E77C59AF6EA6BC
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\TMDocs.sav.OC9oMrMV8	data	54DEA0E9438453A9C0264A3CCF83F3D2	284E31C4E3F5036EB634491ED3B48A2D52DD39B0	2EA1578E381460E86AC247537D6C5CCF7FCF783E4E9742CD6B177964A387371C
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\TMGrpPrm.sav.OC9oMrMV8	data	63EC40AC832E9CD40447B2A0C7B82060	0582DD97A09C7730A45FC891FB054724C51DA186	B39B65D5577A5FB558CD08C27405A046E6CFC1EA198363D0D6C24CEC4CA253B6
C:\Users\user\AppData\Roaming\Adobe\Acrobat\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Acrobat\Preflight Acrobat Continuous\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\CRLogs\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\CRLogs\crashlogs\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Flash Player\NativeCache\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Flash Player\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Headlights\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Linguistics\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\LogTransport2CC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\LogTransport2\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\RTTransfer\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Sonar\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Adobe\Sonar\SonarCC\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Microsoft\OneNote\16.0\Preferences.dat	data	44C25880ECB4C84F0511FAE2E4D5DFF7	991EBF94CA55296D8AF5CBA3EBED816AC91A1629	873992F9349475C480B86E624C6BB30CF8DE87F57BEB7BEB9A8EDE6D3D3EF2E4
C:\Users\user\AppData\Roaming\Mozilla\Extensions\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\InstallTime20230927232528.OC9oMrMV8	data	A9E2E9CC5BE2A32DEAA74B1ACDC2F50F	AAD563F17C0412E9DF32EC090B18E03C5358CFFA	D3BF8DD951E853A99EE432315C29AC46794DE0FFCA5EA8097ADBDE620123A6EE
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Crash Reports\events\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Pending Pings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\SiteSecurityServiceState.txt.OC9oMrMV8	data	EB18DFC71E4D34B2ADF0C0855278B470	AC492F26D3701B4E4C10AE7FB570FA7FA822DA76	3FD1C3A4C789BA84B9F17969EB55F3554DF775BBB7537A2BE2FB1AFF977B4F34
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\Telemetry.FailedProfileLocks.txt.OC9oMrMV8	OpenPGP Public Key	D00E174A649687EBBCF9061C8ED1CE19	0CB8F424B4CCC391FAD571ECC4157AD0232D78EA	CE2AE14B4B286D814BAA2D3A8009BAF21A93C7F7817522C5A9E31FB100BF9B31
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4.OC9oMrMV8	data	2ED745263040B0009FA2268AFF215CF3	99F8908C4DCE78FB9A87D5F4C43878C6867AF771	5748C256AE0EAB7942ED984B65C9FFB8B4CBD721D6AF61858A5E475E983F343B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addons.json.OC9oMrMV8	data	BF8808501A5BB2B9A90EE93BA3E1EAE5	A3B94E0FF49355BECDE32DC87D1F150EBA1D0E72	13756D5B9C5AF88FD0F7EAF65183286AADF9C60AA4C34BEC55FDC8F341A05620
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\bookmarkbackups\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cert9.db.OC9oMrMV8	data	941B3DBF9DA9F035BD5AB1A73164BBB8	45951F71BC0BBFC2619E5B756991A4E46DBD4ABE	12EEA314B5A34DD7988CF07063CC2733833CD0B3124BC3D8B3F4265D33D0C3BD
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\content-prefs.sqlite.OC9oMrMV8	data	5915043DCE839E60AE7D7D564DD34D90	3803534A7BAB500045FB6373FB4AC6F54D55C588	A5DE016B4776004166F17B94E49CCD442C4400728708C5B34C3AB233AE869637
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite-shm.OC9oMrMV8	data	6DF7D8F3A8AC9B4FB86C808DB554D520	D1322E8D4273BAF85B8AE9B95D2780EA19F7674F	60A502D13FCE6C50349D24443C3EDF6D29D3F9D4F4A23E64A18B4A6ADE0C8684
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite.OC9oMrMV8	data	2BE88F24CC9FC56BABC09273FD2C8112	38F778256C4A120E8621D014F5A70C52B8C11153	66E0232A832240D91A93572388D9DE731480685A0F830490F1598BB45F37282E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\crashes\events\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829702.cde8135c-88c3-4c34-8670-7ef017742548.new-profile.jsonlz4.OC9oMrMV8	data	C62B7612D8AB04729B49EFA3CB08C827	13A1E53FDA3638A71BE80D568B70F1DD1C1A5234	AA2F616A8E9BAEB6F4DFDE98F2D9A050E99C6A3E102348FBD501204C028F1042
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829737.9f7a5e7a-2be0-4ff7-b132-b1f6e59a8e58.event.jsonlz4.OC9oMrMV8	data	238ED2FC9E92A222432C39B573C94BEF	A218ED63862630590C87AC8F044DC37187AB5378	214FD75DEA141459C97F5E24E5D36CD2D40DB4F333E1F98EBAE1FE017990C5E9
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829744.7278f154-e8f4-4235-84c5-c5c1c6af0084.main.jsonlz4.OC9oMrMV8	data	329EE715D71216A73861C8471446BE55	C99F0658D4A83D7E6F815683B9942942A5CE88F5	4F2AD8B6CC8650C6CC08C56E2C81CDE6B799764128CEF4D2CB3D3BF18699F75E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333829746.67aa4432-87f8-463e-b422-f6679add9971.first-shutdown.jsonlz4.OC9oMrMV8	data	A55C9BE8B2BFAC09365AD2FF9B78FB46	C22B59C87CBDFA8D0ADFF8495CDB098BDFE68EDA	45EADFD038522BADDD8E9EAA7C9CA1F6F76EB3C8B8A18BDE068692A7F1BB88EF
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834580.6fc53411-ad83-4cf6-a5f6-905f0f3f52e8.health.jsonlz4.OC9oMrMV8	data	163E4721E5347FA801547373541858AC	C8351E08192B1C297BAD40C877EE94A63123602C	A0CAA975B1519245F9BE78087B7A38EDAF152A6B9A5B9359E869D16D6932DB2B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834606.011115ff-9301-40fc-805e-ba07b7fdfce4.event.jsonlz4.OC9oMrMV8	data	5B5876525489A6D52F581A4EC6F53A53	4CE81E0F6048F9C2260325EC99F8879C511A6E1B	15FFE9357F8E6CCD447D512DE4C12FF53C1328B71A12AE323AD7AB9C46735983
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834608.65054280-9d54-477d-a3ea-afcb1f88e001.health.jsonlz4.OC9oMrMV8	data	0AC240D1914A62089FF7779FB4A58CD3	12C7068C8CD1F344F33660E061E0F65B9BEB129D	7805012C6C74E162F8EB756E8378BE8A4E8B110316A297AD590B910CE5085352
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333834620.c7889da7-33f0-4599-8452-58d47c58437b.main.jsonlz4.OC9oMrMV8	data	0EF5054B4D783A030B2ABBA152122B48	3FD0A22EF222F54286C47CE5DC8A47B3AE47E992	1AD16FF98325298010C33A826B6A818D759E564B1C60852D905217F99730EAA2
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857833.45e26519-596d-41a5-b290-e547b44111fd.health.jsonlz4.OC9oMrMV8	data	AB1CF904A229B0F450C651F149C899BA	EE160EA84A1DD79C4C627CED4E937C06BF001979	42BC4E60822EF60F211AD10677025FF41C783DC74D42EEC1B0658716E3A51333
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.81ddb4cc-1d49-45f2-961f-e24ea6db2be5.health.jsonlz4.OC9oMrMV8	data	6A97171BF8BC123245808658F15A7209	60E663639E7BF789D844FDC3C17220E64CA69E87	F28C336AEB1F1116297B45C333D0DE0B7ACD4BE136468591F8A377A3D7EC49D2
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857860.a73949a2-5a70-4025-8008-88156c16bb4a.event.jsonlz4.OC9oMrMV8	data	6657536F7BC4BE7E67B26E5258D52EDE	C2F3129DCE3AF4D1E580B6BD4B504D210134B901	DDCBD21BCFAC65187CD3B6B26498FD41E70DEC5C31BF022066AF4F5E2D067A3F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\1696333857869.95af30ae-acac-4802-b983-233d7fd3cf34.main.jsonlz4.OC9oMrMV8	data	2CCA4A5F3ADE3A1DC99B530678E94E38	83606FE1331D120FD38A0A318A4B9A58EF30E8F7	343DBE4157BBFAFA9D53F86F2F759B133FC56EF50BB6725141FA56E72D799AFC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\2023-10\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\archived\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\db\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\background-update.OC9oMrMV8	data	4FB16A27B13A18E06772BD2F1F5195A5	CBEB88443EFBD49139DE666D317CB75B4344E9E8	802EA8980845182DF807B1E47337601551BD71CB813EC0655C82023FEF9D3156
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\events\events.OC9oMrMV8	data	C9729AF4B225E4EB719991EF8C9ED430	188713AED45F5311FF737C1196F69335D48D9F37	F62F4E07641216EF699B0320A9DDA1F9E489C9799F4787920199A719890DBAA1
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\05d02ac8-b2f1-4670-8541-db8ec2bbf427.OC9oMrMV8	data	CEB0758370334A67CF436C1C2FB4A94D	C506A70B764BD248FBD9C4A59182FC04F0F7DA83	3FBB9D37E9ECA761222C6589FB2E7C4461444328BD9701A149339D1933BD4EDC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\12f997af-c065-4562-b9f6-11000bb95c9b.OC9oMrMV8	data	CF687C91B94CF378B75179D1FD338A47	1FDA10C6FBCA023EC13F993766078ED44B181DE2	F401E9FFCDF9DE138A0DCA3189C85BF71A479D2FAAAC70CF182FD2D1E9455E69
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1435a377-bbaf-4c9c-8706-0811a779fa3f.OC9oMrMV8	data	E46234E263407A50CAABC8929F12C89F	A8DBFD4B19200F81206C44CC5742B871BF1B52B3	81D2BA9E72A49AF858CE4060BE364CDB5F67DB3F6C3C48940F2B93AAEBDF6F35
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\15f01145-7764-450b-9ad5-323693350a9c.OC9oMrMV8	data	08A6E19F2E6ACA0309CD3D3DFD9E9965	DF67E5E26CBEED61A8D96D406DE3E0B392089EDA	BC4F1E83F82D172D7FF8BAAD7F2AAF9DCC92E1B89508B0F26968D5B169D0A83E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\1d5599c8-3f43-42cc-8163-9a43c60a06d1.OC9oMrMV8	data	31CD1B0A5E2FFFEAECE2BBD483855CF7	E5927431AC20335F70D405BB1ABD86B2F0B9DB47	32B6432321E674DB1E87BC99BBEE45B3C9DD1C9CE32237BA9CB5EA081AE38BF9
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\277ffbb3-8e94-4f3f-acac-7a401d130160.OC9oMrMV8	data	86FC313C79F392152F3B03B2ED76CA1E	C496EBAB8E0C06C9DDA9044F6E825E2F3598D969	5EE9D4BF21C1E1B7593C954050FE920B575478505BCC49BDCC40704D36188DE6
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\3a40aaf9-3f8b-43a2-85e8-88e3ffc7666f.OC9oMrMV8	data	7678E85910647645E6BB49D0E7E3F579	9EF859C9DE68BB8BB52E7D010F52A088C43D7FDB	4538F6A3DD81C0334979DC2CDE97F708901F6B68C0842E04BDF95ECC9966B3A4
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\78267ebf-1fb3-4b11-82e9-903e54a2a54e.OC9oMrMV8	OpenPGP Secret Key	263198369D23930CD09D4287E94671DC	E5FE5968E41468D7CADB46BEAEDCE98337D3A8AE	05F25434AA8F7765AD7D7A584EB8FB19A9F566DDA1DA70D4F4FECBC351261B24
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\7d12ac42-15c3-4db9-abfe-259bc8d249ac.OC9oMrMV8	data	994B41B7440A91AE5625B0B5ACC4AF54	EBCB5C0C02CCCA82445AF4485955AF77E6190405	EAE99F48084CEC5260D46D980AE2902D3DA3FBAC5B5B0AAA791D65D2AD3BC373
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\808127e8-e7ed-4078-b3f3-7f09061a011f.OC9oMrMV8	data	C5CFBFDFC16A8DB201FCBB5504C8B171	477B304AE60BB0E45650CD826A2ADF003288847B	93AFC645EE1AAABC8584F1C726AFFF878DA030BA286D4B8DFD1417B90B3CE4F4
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a5d6ec76-765c-4778-afd2-1e05a1554d8e.OC9oMrMV8	data	0109568FD2ADA3F753730A7846D53710	8AD652D25C2994BA83D3BC9A91D137E1B78E1FBB	3F0A4E1D8A2A9076C4ECEB9B1372506AEF50AA0010E33FA68B92F2D943DAE962
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\pending_pings\a7174184-f177-48c4-876a-8a51c2ed8fbc.OC9oMrMV8	data	466474B761CC687E4F60E4A7219575DF	3DE76096F8D4DCE1D587691A48582239EB5E2104	B17997D470A2741B09795249536B779D92AE80FC7769FD94443BD40EC438FB4F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\glean\tmp\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\session-state.json.OC9oMrMV8	data	76D8C5E6BAB6EFD5A619E472A0DEE22C	2B7B17A13817465B13E386C062D1FE0EB3E99178	D286026F8B99A02DE8B4523516F1F6DFC33825552328472060DDCDA0B7C65B71
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\datareporting\state.json.OC9oMrMV8	data	BC8BD3ED0827C0C0784C7C474EC75425	C25A3D6C60410F4F4994F38E40D433293EC68388	6330DAC5D8FA78025B068BC7920C9B6AC0313A9068CADBFD45A69322C8DBDC5A
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\extensions.json.OC9oMrMV8	data	B6C143616CCE973C3938C1AAAD25B8AC	46467E58713F3E813978D06223F5594B75C53B86	32E0845FE4B7A6F485110736FDD7895E9B9FA8482E067D8C1992CA45A77C1666
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite-shm.OC9oMrMV8	data	D33ACD89A6635294273052AF0570F099	FDBDE2BF5FDCCEEBB195D136EF0702673812E9F3	386BD11905BFC0DB7B81A8FBF350F2F91756AC83BAA276C2E372C5BC1FC59BAB
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite.OC9oMrMV8	data	B1387487DB685975C67CFCF75B66602C	27C10DD8B29B709CF0508F265686E5CB066F8BB0	7A7B9BBE4AD18C8C603685BF31B95FA4CE95584D228CF274A702F7DB7BB69C5B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\key4.db.OC9oMrMV8	data	25D32A2F193574F9CE127DFCA12DE1C5	2D863C50ACCA1364EB2EDB7E8738F7864DE12A3C	432F759810FC1AC0C6ECBC17D200D93CA5C34FFFFD6E2BE6975F545F03A1E88F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\minidumps\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite.OC9oMrMV8	data	C585795D9D4FA5A4D4130B1AF2CBECEE	5BEB925AA49FB031AE7A7944F8E3B008F09C0A93	ADA0F51DDE6A70D4C0297804363113E7F844A6D5678DC7DC1E8F41F7A5C79BA5
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\pkcs11.txt.OC9oMrMV8	data	1BB11CA83D358465F9B21380C7C39A67	EA803357E5CAA29FC2548DE66C20CD198EB41FA8	9AFEAB05CA4C9E0256F0AF490B55D1D227BCD2A8C414981D07AE404AF50614C8
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-shm.OC9oMrMV8	data	774293EDA422917599F02B2943BF31D9	AA5E32EA3EE4FADEE757F9FB3D536F7E4C65B69E	0EC15B414A9134D8A038A015BC8EBAE8F4038929198C50DA39F74CDF65B64E6F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite.OC9oMrMV8	data	A24A2E0AA1816CCAE79C0870DB87C0E0	8A988ECF7B2CADC0E6D41B789A95558902ADCD3E	719A904A407345B4A502E18EC252E3D6BCDF1C38B452B4DFAA4713D01F6A4F99
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js.OC9oMrMV8	data	8411E44FCF7704FE3E27E6EA5E5E884F	72A65788F25AA17B623A00760E3E0B2900CAE33D	EB7952EB59E2407BAECE02483AC08EB8DDB265D7213179733378057B101A9AAC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\protections.sqlite.OC9oMrMV8	data	899F6E004477C14513B8893816ABBE7A	F1525007408D431E91275D648FE7C5AE14E1030A	98FB962828DCC1480329E17BBE6D80AD37B8BFF03CFE3F158CBB086EBB2FF8EB
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\45e26519-596d-41a5-b290-e547b44111fd.OC9oMrMV8	data	1E75130632792130F950E4DD97D477F7	E1C7E915D1BDE460071B3D1FFB102B62160B9B23	B88856709D767BBBED73CDCFE533493B49383B14B57722039ED304C885794947
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\6fc53411-ad83-4cf6-a5f6-905f0f3f52e8.OC9oMrMV8	data	E9D6C80944855C02C8C4A144FFA76A94	B053F1F15C96D6AD48F0968EDCEA3F8B8FEBFB22	3B303BC5EADD0CCE670BD874F196250094646DA1D479F77462A9D64CEE8A57E3
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\7278f154-e8f4-4235-84c5-c5c1c6af0084.OC9oMrMV8	data	6DDB5B9A1BE2917F6BB855CE8F833879	E645330A5265A6BD5C7E05B2835F9D8693315E5C	565C35B338C379E6C9488D7D95298F55ED7DFAA8468A2FCC6645BA60A8AFB460
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\saved-telemetry-pings\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\search.json.mozlz4.OC9oMrMV8	data	31BFD12DC4F09E60824703E17D55125B	0163759FD5B3E3A80C7A5540E3A2EAE5F90E4A44	AE1790CD0A2BEDF258DF1A534F16C99DAF36C4FB8EE9DD65D0D109E2D773848B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\security_state\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionCheckpoints.json.OC9oMrMV8	data	27BEB302F9979419A59A09FA99371E37	19CE7540C42BEAE08F9A3D708A3F297E6D2FDEF7	3C929DD856E6AADD73D39F649EAEEF9178DDEA56A3D27DE9A7548A02BAC76A6E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\previous.jsonlz4.OC9oMrMV8	data	4D3CEAE6AF45062FFDFB4639AB85043C	A24E6B5280E8DEF01CDB54BEE26299776E3529FA	30CF38C1AF206B8C23593400748E7727BAF8F755495053F82B38402B1583B9B4
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore-backups\upgrade.jsonlz4-20230927232528.OC9oMrMV8	data	42EDA00684A648C29C714F659EACC9B6	7716D7C2CAB4607477157212FC08D2F3A8D405C7	60262532097B6DF757BF8D50D1FE4B45DEEEBB0803DDC5920C32FC5919B45968
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionstore.jsonlz4.OC9oMrMV8	data	884449C421367440CADAE36E41B5083E	3980909C767B63B880E0576EDCF81BC5077E9A4E	B2579FE179E360E7E4F637A6ACA3B5EB0935279C140B477306601466497128FC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\shield-preference-experiments.json.OC9oMrMV8	data	8C7EE9E40FB3555E36C401E97E58B28E	D3097EA460A389578FAAE073EC77D41293CC567B	B7356A4744EA137284D9FCA0161F6319E4B8A7A296E1784E104BC1FFCE5C808B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage.sqlite.OC9oMrMV8	data	23CD44C97954A77EF9E2D8C28FDB87DC	8F555E51C112FCFE08563DDF09FBC5F6578AF742	E4788DDD627EDF9015438E846A4BFCE2A2623FC9DFA92EE39DA4BAB68B65EE43
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\ls-archive.sqlite.OC9oMrMV8	data	2086CDFB546F2C0FD695CB8F193EAF7C	7172C17732FC9B8573DA7A30C06BE7900DDFF738	58A924942B42F11171767FBB3026C8170E713F06F477E21622400389F7230CEC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\.metadata-v2.OC9oMrMV8	data	0AE4E7922547F63AEA0DCD2C1E5FB5D7	72EF67C56FBF4F7B7ADF3A9E38D134EC3D6C1CFE	3BF6781B2FF5EE23EF9CFA9A40147406AD5B047A1502E7596D19F3EE637ABED1
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm.OC9oMrMV8	data	EDFD170AD422C4C772E96160FB2218E5	AD1FF207386A5054B1750947D163B311124EB283	4C2C1C306AC58F6FFEE54F57B37E18A69F21EA0F328DAC170857E862819FC582
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite.OC9oMrMV8	data	8C51D12DEE1A05B5A54A6FEB2AA8C062	0B942E92602303C8D4481E118B20D58701D528C0	C173795FB94EF39C10ADAB0C42AD1D2009008C926A828CB1EBBF8ECBE76DCE21
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm.OC9oMrMV8	data	AF78FD2C05A5239F38DC6A73D40C1AC5	FCB1F0FCCFD6C71A3C5A55F18EB7A1FB81368EE6	71370DE5C80472D0C661109FEF4700CFF6F3E1E075628CC9915BC51B1D778827
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite.OC9oMrMV8	data	736311B7DDBD652D5D949BA390850AAA	48230E2838652344BAF922CCA6BA107263768B91	D72AB5F924AE67ADE38AE53A9C2F0017ACF3ED16FB729D7A41689D4EFFBCBA2E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite-shm.OC9oMrMV8	data	B2FC00D93A670EC7AC04F1B790ED64C8	52A08EC9DED896EA7B83624931AF2F2865339E6B	115AF7B0A94A633FAC5A15799A2AABF2797401D464C98BB404B39B56375B479C
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2823318777ntouromlalnodry--naod.sqlite.OC9oMrMV8	OpenPGP Public Key	AF773A6643424C0DE5D49B5742150B19	1FA226994C255E8C4ACB6867FB2B338272207148	F54CCE92AF91A28A9AB24F4B112DFAB41773A84E7A9A2F3EB04828BDF38ECC7D
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm.OC9oMrMV8	data	88EEF12C9DF4BF9FADA4DB16E0AE8646	C1E641FFF5B3FD16AC37C111596704B6B246F37E	9C83F768AEA6CB6AE52CD059C692C7E48CF46AA6B3918B8E915D40DB567EB02E
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite.OC9oMrMV8	data	BEF2712BE8B9B7DC3F0781063B360F42	987CF8B581009BE44C3F8587BEB54ED99DE7E6DF	7F4927A33F7FE21C887456BD052008847C74C0A3429D6EDAEF4A3FC82FC52B1C
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm.OC9oMrMV8	data	D9A0A6C31E1AF03FA9208914D6B199CA	B90254B399591E972EE339AE9A1B30D3A771F3B9	D19A581960BB241E4FEFDEF018BAEC579798AE8F0B9F9F5CD5A6300744CA45FA
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3561288849sdhlie.sqlite.OC9oMrMV8	data	24BA5D758FB7B0EB3ACD3FA357FE158E	B7FA09480C8AE9C4043D411EE0B11991B8FAA9FC	5093100A6D851FD3546002E4074D2223A902150DAC48C4ED4967D28D5EB4C614
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.files\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm.OC9oMrMV8	data	2FE27C3F39399B7A92A8B249BBC8352C	2D9D11BBB1091494C5D55A347368FCCCC7EAC9F3	EE40DB81ACE272DF97E77612DCF92E270F5F35C4EEF7CCB92620998BE877EBCC
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite.OC9oMrMV8	data	67199F36E8E06B17A9AB1ABC6C21CAFE	B9794F0D842993F715A56705219A38821919E243	0005556BDDE1F546364A1AB12AE0B0A33A4CB56388E2D5AA903FC571DB37BB61
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\permanent\chrome\idb\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\temporary\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage\to-be-removed\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\targeting.snapshot.json.OC9oMrMV8	data	B7A00FF6CBA41A0593ABB00DE4B3342F	E8B686C723B09DCF759B583842C456AE7F5EB813	31A0F1829E6122752CED9B519793A9E173E77D35F4E19EE7BBC9A50807472257
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\times.json.OC9oMrMV8	data	2B281037576FDF99C74BB167A5976241	6DC5B7098E0906036301C81B5E61457E7B57881C	3BDBCC4903CFCEE0A14771A689429BEBD7E976AACE50CCCEAF503D319011324B
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite-shm.OC9oMrMV8	data	3EAC97FFABF0B698DE4AF9EF27E999F1	E82A5D9E3589695ACD5CB6F64A4BD2E43A1D2963	154FF859B90EF332A9CE31755B48833D822AD7996D95B0EB577976D876A0C937
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\webappsstore.sqlite.OC9oMrMV8	data	AE1C57DB5DDA32ABB2EFBFA5AA0254AD	2BB4D69E92F9049308D693C5E2DC8505322D1D91	BDC37405D31C4C5EA6BB30013FCA44C8243DA42704F3A6C16CE4F6D086FC17DB
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\xulstore.json.OC9oMrMV8	data	51162888B2B74F5B66C94A7D4E01C0D8	190C73C838E3848D9964E9584B63969D40491E2B	12F13BC2D20E0E0B197795BA19F63CDA13083C3B0000C424FF707A38877F2780
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\z6bny8rn.default\times.json.OC9oMrMV8	data	E4C57293C654BD1BAC2D3CD9634AB4AE	8066EFE7E00270DC879B7DF12710D21E7C327FF8	45B24E3CD6828EA9B021040EA8A6D5A06557434F843A5ED6314B29AB9B133624
C:\Users\user\AppData\Roaming\Mozilla\Firefox\installs.ini.OC9oMrMV8	data	E6B7D84823EB7F965A3C32614980C5C8	FF21B4D8A144534963393DAD1FB06CE301C41BE1	F118F5A9DAAE89261B9E7F670EB1FD190F677760049A4226DF50C31EEF8AC879
C:\Users\user\AppData\Roaming\com.adobe.dunamis\56079431-ea46-4833-94f9-1ff5658cdb1c\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\com.adobe.dunamis\61f56613-c62c-4b17-84dd-62b60d5776aa\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\com.adobe.dunamis\6d9d9777-7ded-4768-8191-9a707d72b009\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\com.adobe.dunamis\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\AppData\Roaming\com.adobe.dunamis\f2eb6c79-671d-4de2-b7be-3b2eea7abc47\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Desktop\AAAAAAAAAAAAAA (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\BBBBBBBBBBBBBB (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\CCCCCCCCCCCCCC (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\DDDDDDDDDDDDDD (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\EEEEEEEEEEEEEE (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\FFFFFFFFFFFFFF (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\GGGGGGGGGGGGGG (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\HHHHHHHHHHHHHH (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\IIIIIIIIIIIIII (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\JJJJJJJJJJJJJJ (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\KKKKKKKKKKKKKK (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\LLLLLLLLLLLLLL (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\MMMMMMMMMMMMMM (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\NNNNNNNNNNNNNN (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\OOOOOOOOOOOOOO (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\PPPPPPPPPPPPPP (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\QQQQQQQQQQQQQQ (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\RRRRRRRRRRRRRR (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\SSSSSSSSSSSSSS (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\TTTTTTTTTTTTTT (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\UUUUUUUUUUUUUU (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\VVVVVVVVVVVVVV (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\WWWWWWWWWWWWWW (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\XXXXXXXXXXXXXX (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\YYYYYYYYYYYYYY (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\ZZZZZZZZZZZZZZ (copy)	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Desktop\bZRL0uttVu.exe	SysEx File - Clarity	D65AC327BFDD3713BD7B4F1F56981974	350FB12AC37FB9A182DA3CCAF186054045069782	B812EF0676BE8216B27A8553E0CA83A805B14AB1508AB5D8AB5FF7BE187EF196
C:\Users\user\Documents\BJZFPPWAPT.mp3.OC9oMrMV8	data	1CE99762AD6A076ECC5F69DEFEBF0606	B4E814265DF4BD27B52FC861B1896A68253FB946	371948278801E0A67C9223637278A21BC21EFED3F2880E9D31539EEC40F8A9C4
C:\Users\user\Documents\BNAGMGSPLO.mp3.OC9oMrMV8	data	064D84B359F763FE92546F78DFB4FD68	FBEDCE2D4B234F5710216C73446BB023113FF6EC	E66A7A31A8021E813AB6206692A81B6C687DB4DFD31BD17A4E6504CBFFD9C4C8
C:\Users\user\Documents\EEGWXUHVUG.png.OC9oMrMV8	data	83A760906A26E9C4523D8EFAE452989C	09543FE39AF1EA672B223380BBC66DDCD6A81DDE	75CC6593369E6BAC76EC667CBEB40FF4C9D0478B56C50FD79B616D40474D5510
C:\Users\user\Documents\GAOBCVIQIJ.jpg.OC9oMrMV8	data	4418FC097DD2826E1BFD45C62F057F55	FECA9AE761B05F59B4425285ED04CB535AB289CE	593A396582F046731C008F204A64F39342E4C097DDE94E278206381D8C2F29D1
C:\Users\user\Documents\GAOBCVIQIJ.mp3.OC9oMrMV8	data	351417B5C3BDB0A59A330639D2986689	63DB05112A5F3233EC2BCE10C8597F165F61D462	CEC8139DE204F66281126052F5763AC1C04FD5D5C35B49080B4610A5E0505567
C:\Users\user\Documents\GAOBCVIQIJ.pdf.OC9oMrMV8	data	BA6F657F5C8D6DD09F4442CBF5BD4777	DA12B66131255A42246E94904DC07F6ECF4B55E5	CC150BF2B4CE4D206B128C2B061FBD12D87F9F6E731B026CDADDE5D6039D2B28
C:\Users\user\Documents\IPKGELNTQY.jpg.OC9oMrMV8	data	04A04C24A98F3FC15045E365E697F9E5	E094D852A6C803526D55A941F8B313A83DC9F556	9C7A859C7BCAEC64D896DFC41509D798ED6A9E0C77B18CCFC738FA0EB4AB5951
C:\Users\user\Documents\IPKGELNTQY.xlsx.OC9oMrMV8	data	408560929AA428C8EB3F978C8A018073	A5508B0F242F99229B4AF47ED50179CED39FBF1C	A73CA54F99B493D780BE71FF43DF8536FDCA254356AC373A112AA1FE6FAB85F3
C:\Users\user\Documents\LSBIHQFDVT.png.OC9oMrMV8	OpenPGP Secret Key	330DA1B084D7232D0579EB6A31780455	8F1D264977781A386D4B658AC9841883D61B600D	B2C0590A4E8E3554EB2A26891BAAB3A19C0AC24C2318A953CA2740BA38016035
C:\Users\user\Documents\MXPXCVPDVN.mp3.OC9oMrMV8	data	4374EF7177A5546CD390C51E965C6A5E	B29C52761811E4D39F4365B478576CA7E8F06181	312607812081AF08B49C4AC1A36775E9A49F933DA0830F49D107D2682E6DFABC
C:\Users\user\Documents\MXPXCVPDVN.pdf.OC9oMrMV8	data	0C09355BAE433C10C14B7CFD77AD9DCE	13582AA252639CF208622B8988AD5218388E4307	FCDFFE937477581C0D8EAB184583A515671E856EB18C52349DBC67C84083487B
C:\Users\user\Documents\MXPXCVPDVN.xlsx.OC9oMrMV8	data	79AE699FDBD2E592D6048A58A6BB9052	19E8333C96EC5D0FFF6DFC587FA49AA6D6E30F78	DDDC8228F13C795E549E13D1F3494545D9FDACC74C457CEAC6D803B14E96EF89
C:\Users\user\Documents\NEBFQQYWPS.pdf.OC9oMrMV8	data	031A653814A0FAF8F72A4975FE075361	CA5A3CFE1EA9A922BD945933184860869955379D	975F055950A0C7C4FF33B932D2D24B885895322E64B75D56A2B1CDE6A9E646A2
C:\Users\user\Documents\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Documents\PWCCAWLGRE.png.OC9oMrMV8	data	93CAFA2CB864B18DBC10676169C69282	20EC70A949FBEDCF0983C721FDC73CBA591475FA	65995A09A9B80CAE9C69AE0013250B071E46D027B61CA31A4853C36737B02B7A
C:\Users\user\Documents\SQRKHNBNYN.docx.OC9oMrMV8	data	37CD4C209652B71DC3BE9FA0DDAB5651	66D06F05E1FC1298A3598A0007DE95EAF063C56B	E544CA28655C7B4367A076EEA687317F161FFECE0F5A06205D5AC8EF7FE782E9
C:\Users\user\Documents\SQRKHNBNYN.jpg.OC9oMrMV8	OpenPGP Public Key	9EA529F89C43A5E15B196C73698C17BB	39AEC2F3C007768B9807ACFFF5237918E7149630	9943F49C3C7868D497F2CD899B8C0AA81DB973A023DDA2123812B389F35A49CA
C:\Users\user\Documents\SQRKHNBNYN.xlsx.OC9oMrMV8	data	CEA6FC0BCC45DB7F66BA66B0EA25A48A	8288252BB64521E79831E18841CB4F245D7FE51D	47E0FB8F7C81686EFD40327A5490F772EB37D605E5422B3A9608366DEF940632
C:\Users\user\Documents\SUAVTZKNFL.jpg.OC9oMrMV8	data	7B0D07DDA49863EFF35C2696241CFB8E	B8703520B75E2DDF0815A8C84677FFA5BB5710B8	14F756233FDDEA32A6879EEBE7FF52BCE014E842143B073C66B2E0022149E099
C:\Users\user\Documents\UOOJJOZIRH.png.OC9oMrMV8	data	6FA470CDAEF74B763D56FA17082EA84F	0F735D3EBBF9883C8D3A1D0C5B503411ABCFBA77	97A39A7ADBCAB0DC7E21A9DD7DDD472DA80CAC1DDF7383586CDF1FA271CF324D
C:\Users\user\Documents\VAMYDFPUND.docx.OC9oMrMV8	data	EEC1EE8D3D2E422A4CE44E1CFB149969	F8A9D30F89ADA3EA3BECD18C7097863198CBE3D2	195B9CB30A643387E9A8C1EFE33EA868E0E1C7E008E3E54EEEC4F388FB5BCD03
C:\Users\user\Documents\VAMYDFPUND.pdf.OC9oMrMV8	data	A0EE0D5742738AD28EC01D6DABF60F89	9E8058B5C0E4507087BB27ED41C9C83409C69FB6	8F12A63CEDCCC01690B7DCCE7F1F4AA70A19EB905B0AF0A5F2E630DE3FB4ED79
C:\Users\user\Documents\WKXEWIOTXI.docx.OC9oMrMV8	data	86DDF3AB7FF8A8BC854B5D03E5908529	A3D19E4AFAB8D0E5EAA619D7B3102B2701208C8A	B17861A159BA69F408B161F9319D6742A1E8559895A833D89680D476A0D94D63
C:\Users\user\Downloads\BJZFPPWAPT.mp3.OC9oMrMV8	data	254B3512126CECBA3ED09C324E32B673	A2208AA37F08B9DB4456964B855436961343D3B0	9AF46244785D0F4CDB9DBFBDC28D373B653332642535C05839AA90D5EE1D4871
C:\Users\user\Downloads\BNAGMGSPLO.mp3.OC9oMrMV8	data	CA0253902CB92D51809637320C388861	C4F079CC8235606F34EB0EE167A7B23218B14254	549EBE7B0D7DEF7669999BE3D8414F1A1793E47C7C64007F4D00636E2ACB69BF
C:\Users\user\Downloads\EEGWXUHVUG.png.OC9oMrMV8	data	77AE3F81B7A756E484314C2B9806926C	2C2F67893FD666BCBE3CCEEAEFBBD124727A1BDA	C979CC7FFE79D548EE1696D7A9CB711CE37B01AE73B8342CB2959C1760606D45
C:\Users\user\Downloads\GAOBCVIQIJ.jpg.OC9oMrMV8	data	A4CB56A75C83AA66473CF004AA1652C4	5D7565FF4A6B9086320BBB883C2F84184CFB60A9	8A9FD01BE96BCFB7C6E495684CE70C28CEE8020F80540A566AB085E60645A490
C:\Users\user\Downloads\GAOBCVIQIJ.mp3.OC9oMrMV8	data	7217C34A973ECEDD22076679C7E3A001	2659E0C72739DE6079D024315829EC598DC24EE6	D3DDB4F0E7DF608F89C2152F8D9099DBFB2050C05A21D993B3D210984B117F94
C:\Users\user\Downloads\GAOBCVIQIJ.pdf.OC9oMrMV8	data	46660524BBCD5FDCDC218152909CB485	DA52459EA70EC2FBC52E02E13393B41FDA374383	481AD701EE8DF026710081D434E13B9C893C01F812B0752715BA2E63E0F659F0
C:\Users\user\Downloads\IPKGELNTQY.jpg.OC9oMrMV8	data	8709CD44A74AE8782B64020AE6092366	ABCC161845F8D15C3838D81032B813220FDB9816	01EECF5E268921D5C59018AA87D9616B762D8B17180540D34A1A2FE9BAFE6BA6
C:\Users\user\Downloads\IPKGELNTQY.xlsx.OC9oMrMV8	data	A5B5DA17D08FB52A310BA836FC7755CE	BFB9503E01F7AE85E9A52578F17E7DD491D75ED3	900CE74287176284AFA10BB829118995AFAE72FF416AD05E5A8BD965CC5355D9
C:\Users\user\Downloads\LSBIHQFDVT.png.OC9oMrMV8	OpenPGP Public Key	48A90B9F86E816486BB9211B8A9C8C53	49807F98D2407528B42BE2598CCF4B82D20D185C	28BB05A8BFE16B5C4A6A438A9916FCB5C4E5DAE17CB6029201CC6AE4787D3FE1
C:\Users\user\Downloads\MXPXCVPDVN.mp3.OC9oMrMV8	data	151AE1CFBF9022D4A16038459918C820	3DD5C320D1FFA43980E22AFB1E0561A6B91285FE	83F07EF8601B29D5CD1DD25DDBA488F22091DA9D3138D9DCA323B2D3E2E3422A
C:\Users\user\Downloads\MXPXCVPDVN.pdf.OC9oMrMV8	data	D2F025A01F95763A6E86BE22786B23BC	636C2EE603BA7E8D52E2683B4776C8A9C5E6B75E	8211DD0202F932C225AA7168E139E6E22F0B09FAFE818DAA84572B4BD4116270
C:\Users\user\Downloads\MXPXCVPDVN.xlsx.OC9oMrMV8	data	9EFAB58B56B157F29223227147089876	AF3180B8354B0143C08667456DB60CE57ECBA652	0C3775DAA15390C732E01286DA6475A406DEDDD6A187D740486C29555BC43F80
C:\Users\user\Downloads\NEBFQQYWPS.pdf.OC9oMrMV8	data	B8F5E8B33125C6F648C02D02C6C4A3DD	D5E11026179DEE8628615D52AD63792381B5E7FD	1868EE48D2AA2C6CCD0C9335775D2B75CE3939ECA0E13035A22562113F18FEE9
C:\Users\user\Downloads\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Downloads\PWCCAWLGRE.png.OC9oMrMV8	data	40FAFAB32EB03C9EC6D3EE1F3E466A23	5239A82E1191CDE7763FAC4C26C1E63B8CCD8E30	9264F7282C4F98A51CC27FC9EE6D0FD1251800E1AE090FE7BD26292C7735ABE6
C:\Users\user\Downloads\SQRKHNBNYN.docx.OC9oMrMV8	data	932300DEBA95DC9AF86F6B6319DA700A	0E0FBD1E634853F29195D24614C0883539F11F81	58EFA82C38BD59CEA319DC9E6991C6A487BA36CF75659BD31E6215DFA45204F1
C:\Users\user\Downloads\SQRKHNBNYN.jpg.OC9oMrMV8	data	9793BD1177E875A68E07FF4181C017FE	6FC609B9EE2EF3A278C7B0FD5534386A25D347F0	CA8B13EADAC5165801C32C9BED219A683B13AE51BB20A17E28D68B990B3D0FC5
C:\Users\user\Downloads\SQRKHNBNYN.xlsx.OC9oMrMV8	COM executable for DOS	2D414CCF5B60F8BD7E4CC89709CC4FD2	24A6A44D32CC7BC6423B0C022256930565587C67	55A1753046FF434EDD4568A1D6051A1158364142E758BAE4DD2A5C446D94E564
C:\Users\user\Downloads\SUAVTZKNFL.jpg.OC9oMrMV8	data	453969D635D3AF8BAE288D53F90C43F8	721137E70B385822A775939604BF8304CADA335F	C66D0DC1FA2EB42A0552046E636B5E9C4F4540F7A02EEAD02CFE8AC46A25BF0C
C:\Users\user\Downloads\UOOJJOZIRH.png.OC9oMrMV8	data	44549D486552645EED7703B6E6896A25	B1CBED3254FCABD267D1E7BBAD13272B966ECABD	E918B9A088B83AD027557FB2702B67F222F73AA1C1FBF81B358E1D6357C77721
C:\Users\user\Downloads\VAMYDFPUND.docx.OC9oMrMV8	data	BCF88AA3207AF08951982FABE6351E13	9B91113764246B40F3CE95598E232CCC9ED77089	D5071F98BAE0312F4F8FF0C3C0D4C65E0B7D8A3AEAD9D40A58C6D942D39809CD
C:\Users\user\Downloads\VAMYDFPUND.pdf.OC9oMrMV8	data	3114A691652A50619FDEE0F138ECB842	CE9A9CF5E5B46B3B5338EB15AB07A2BE91C23252	961074B362D6C8672F1876F21AC1559F651EEF18A04BF2D7496A2A89F2F97302
C:\Users\user\Downloads\WKXEWIOTXI.docx.OC9oMrMV8	OpenPGP Secret Key	36E1BD994AD5CF6A3154EC609DB93CDB	202723873771F5AF37A542A01EB2E5DDB9022252	53B68574A390FD6B8943E52B2C162063FBDF44986601F89F9661260E92A1FC84
C:\Users\user\Downloads\ZTGJILHXQB.docx.OC9oMrMV8	data	5D01EE613471FF8939D87061B64A6362	88C9A50B1C68A3127C41F45911479774C5327E80	1C8DDD636469605FC6528964F4630AADEFF79703906B2C221D72280775D84878
C:\Users\user\Downloads\ZTGJILHXQB.xlsx.OC9oMrMV8	data	B6204C9B43ED149A80E3D546672DFA78	98F9158D38CBE47074998D93645CB52EABCE8F2F	0E09685C61AB6E86FEA361EA90EB0107572CC3094120D0793F352A7A85211C68
C:\Users\user\Favorites\Amazon.url.OC9oMrMV8	data	964FA137CC5220FF14AA047165084F99	A2D9C9B476425413707C0E494DDCAFE84F9EA2E1	F718C366EE7AE6E1928B0A4F88D160B29463AEC4DB5527D3B4ED2EC4B6A226FD
C:\Users\user\Favorites\Bing.url.OC9oMrMV8	data	783914666D3DC703C1AF550799887075	3A528379E4DEB7B06CDA200D62B8341372FFB832	524996EFB8B842A14F619832B93C41C39757A3859606192643F459BDFC9AA2E6
C:\Users\user\Favorites\Facebook.url.OC9oMrMV8	data	54E8A3E400B40FED3139326B52361C1D	EBC1EF2CF3EC513B6F11469B6278E64CAA7E15E2	18AF5EDF1F4B03840F6765E6615F49A4368FFEA3E5F2BBFA4662AE79748743A4
C:\Users\user\Favorites\Google.url.OC9oMrMV8	data	1D20202F75B521AFF43E25CE4AF77393	28525CE2AC77C425D53D0FE2B5DBA9BF1FC2EAFF	6E448AA520A86B8306F666F5E5D16EDE787752E2A09276D7FF24020E70C32E5C
C:\Users\user\Favorites\Links\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Favorites\Live.url.OC9oMrMV8	data	E618036A12D26F24213BE39B067874DC	B3D3AEFB2F7FA9FCEA63F0B80AC1FFDCA0616471	99F855443C0A13D0EAEE41686C89073890AE57CFD2B76963EFAE243A57220A7A
C:\Users\user\Favorites\NYTimes.url.OC9oMrMV8	data	108F0089109DED29D56077A2EA277D83	F2FBA2EAE72F5D96131E288EC5F3B37A0A8EF621	85A7099B3043CE2126F8447701762FC4A817132F005228E234BD7BD8F2EC052E
C:\Users\user\Favorites\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Favorites\Reddit.url.OC9oMrMV8	data	7BBDB41EBC85CA2A841E65045F72B864	4371068599456ECB26ADC5957C83013BED06B3BE	CCBB78973D55B2063B012600BB92D24242AFFC746999C15B03C8E1F462A4BC14
C:\Users\user\Favorites\Twitter.url.OC9oMrMV8	data	60D88EC4F5060B8A742D507282BEE804	6F5D16224D01240B899CF03FC5E0A2C883A167E8	902E964E0737C197C9E7E31875B643303F31208FA5020369C242A22ECC3050C0
C:\Users\user\Favorites\Wikipedia.url.OC9oMrMV8	data	A07590DE98BAB3A9C09BEEA10D3BCEDA	529A6E56318260F8319A6B81B40E5D64FA350C40	721B5EFA8D8269E5681FDE212187FF92F7562B7FEBD365FF7DDFEC7682614E30
C:\Users\user\Favorites\Youtube.url.OC9oMrMV8	data	4CD72A6DEF13F8B158A5E6F35276FEE5	FD478358365CDCB83176E8165C7A8F819A117A9A	87C64F520F6A555C95878F602EEF2BA86ED0CA429554A9F149595957D52CA532
C:\Users\user\Links\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Music\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\OneDrive\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Pictures\Camera Roll\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Pictures\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Pictures\Saved Pictures\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Recent\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Saved Games\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Searches\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\Searches\winrt--{S-1-5-21-2246122658-3693405117-2476756634-1002}-.searchconnector-ms.OC9oMrMV8	data	8504F9774EB8FD950254B893D046C921	539F5E4173AC943866156F7A4DC325F6F4829956	ECD937F4B268BE0DF55D96B79A8012E297193A5CF59D695A337A8EC81E03733C
C:\Users\user\Videos\OC9oMrMV8.README.txt	ASCII text, with CRLF line terminators	A8864AA0987B12BC59008A02C3DDDA88	54327DBA296F734AAE7BA65FAF0B3DD8CB73B714	168C71031668B64E0CCF26E81353F6EACB3599EDBAF62F7AA62C55B8075A5A8F
C:\Users\user\_curlrc.OC9oMrMV8	data	7B03CC39E5104946546F2C22A0358CC6	A63854A8A56DE2E34109B249958023ABE87FBF47	DAFC7E0832EC0E5F82F32B55F228474808E56847E7136AA3085775100B0A1DC7
C:\Windows\System32\spool\PRINTERS\00002.SPL	Microsoft OOXML	437FFD647837B648CBDDC1B77BE823CC	38DAF971FC83F6EDD481DF4471B0756C85C7C4DA	69A46DA9124F508C08ACC8660B5B4897257C11E2B9096F89F4224CA4FEBBA5A4

ID:	1542685
Product:	CloudBasic
Start time:	07:25:06
Start date:	26.10.2024
Sample:	bZRL0uttVu.exe
Cookbook:	default.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	a7be144ff0b871ddd45e1e0bef06faa6
SHA1:	811797d3e0ce7c5ed76ff656156a2c066f306032
SHA256:	22a164ed481ba88df26ce7e819f2240d7fafa5b6ee2cd2993cb5fae3d566be7f
Filetype:	Win32 Executable (generic) a (10002005/4) 99.94%

Windows Analysis Report
bZRL0uttVu.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Spreading

Networking

Spam, unwanted Advertisements and Ransom Demands

System Summary

Data Obfuscation

Persistence and Installation Behavior

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Lowering of HIPS / PFW / Operating System Security Settings

Stealing of Sensitive Information

Screenshots

Behavior Graph

Network Map

Windows Analysis Report bZRL0uttVu.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Spreading

Networking

Spam, unwanted Advertisements and Ransom Demands

System Summary

Data Obfuscation

Persistence and Installation Behavior

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Lowering of HIPS / PFW / Operating System Security Settings

Stealing of Sensitive Information

Screenshots

Behavior Graph

Network Map

Windows Analysis Report
bZRL0uttVu.exe