During Learning Mode, where does ThreatLocker place Miscellaneous Windows files it profiles?

During Learning Mode, ThreatLocker profiles Miscellaneous Windows files and places them in the $hostname\windows directory. This mechanism allows the software to monitor and analyze the behavior of these files in a controlled environment, ensuring that any new or unknown applications can be safely evaluated without impacting the system's operational integrity. By organizing these files in a specific directory tied to the hostname, ThreatLocker maintains clarity and consistency, allowing users and administrators to identify and manage profiled files effectively. This practice enhances security measures by ensuring that unknown or unrecognized files are correctly categorized and can be assessed before being allowed to run on the system.