├── .gitattributes ├── .github └── workflows │ └── publish.yml ├── .gitignore ├── .idea └── .idea.Prefetch │ └── .idea │ ├── .gitignore │ ├── encodings.xml │ ├── indexLayout.xml │ └── vcs.xml ├── Prefetch.Test ├── Prefetch.Test.csproj ├── TestFiles │ ├── Bad │ │ └── notAPrefetch.pf │ ├── Vista │ │ ├── CMD.EXE-89305D47.pf │ │ ├── DLLHOST.EXE-893DDF55.pf │ │ ├── EXPLORER.EXE-7A3328DA.pf │ │ └── NOTEPAD.EXE-EB1B961A.pf │ ├── Win10 │ │ ├── CALC.EXE-3FBEF7FD.pf │ │ ├── CALCULATOR.EXE-6940BD5C.pf │ │ ├── CHROME.EXE-B3BA7868.pf │ │ ├── CMD.EXE-D269B812.pf │ │ ├── DCODEDCODEDCODEDCODEDCODEDCOD-E65B9FE8.pf │ │ └── DEVENV.EXE-854D7862.pf │ ├── Win2012 │ │ ├── CALC.EXE-77FDF17F.pf │ │ ├── CMD.EXE-4A81B364.pf │ │ ├── MSCORSVW.EXE-57D17DAF.pf │ │ ├── NOTEPAD.EXE-D8414F97.pf │ │ └── REGEDIT.EXE-90FEEA06.pf │ ├── Win2012R2 │ │ ├── CALC.EXE-77FDF17F.pf │ │ ├── CMD.EXE-4A81B364.pf │ │ ├── CONHOST.EXE-1F3E9D7E.pf │ │ ├── DLLHOST.EXE-5E46FA0D.pf │ │ ├── LOGONUI.EXE-09140401.pf │ │ └── NOTEPAD.EXE-D8414F97.pf │ ├── Win2k3 │ │ ├── CALC.EXE-02CD573A.pf │ │ ├── CMD.EXE-087B4001.pf │ │ ├── EXPLORER.EXE-082F38A9.pf │ │ ├── MMC.EXE-0721152E.pf │ │ └── NOTEPAD.EXE-336351A9.pf │ ├── Win7 │ │ ├── CALC.EXE-77FDF17F.pf │ │ ├── CMD.EXE-4A81B364.pf │ │ ├── DCODEDCODEDCODEDCODEDCODEDCOD-9054DA3F.pf │ │ ├── DCODEDCODEDCODEDCODEDCODEDCOD-94896A93.pf │ │ ├── DRVINST.EXE-5F8E77CD.pf │ │ ├── EXPLORER.EXE-A80E4F97.pf │ │ ├── NOTEPAD.EXE-D8414F97.pf │ │ ├── PING.EXE-B29F6629.pf │ │ └── WUAUCLT.EXE-830BCC14.pf │ ├── Win8x │ │ ├── CALC.EXE-77FDF17F.pf │ │ ├── CMD.EXE-4A81B364.pf │ │ ├── CONSENT.EXE-531BD9EA.pf │ │ ├── LIVECOMM.EXE-A134F539.pf │ │ ├── LIVECOMM.EXE-D546E475.pf │ │ ├── NOTEPAD.EXE-D8414F97.pf │ │ ├── POQEXEC.EXE-69592829.pf │ │ ├── TASKHOST.EXE-3AE259FC.pf │ │ ├── WWAHOST.EXE-00A972CA.pf │ │ ├── _CALC.EXE-77FDF17F.pf │ │ ├── _CMD.EXE-4A81B364.pf │ │ └── _NOTEPAD.EXE-D8414F97.pf │ └── XPPro │ │ ├── CALC.EXE-02CD573A.pf │ │ ├── CMD.EXE-087B4001.pf │ │ ├── EXPLORER.EXE-082F38A9.pf │ │ ├── MSIMN.EXE-38BA891D.pf │ │ ├── MSMSGS.EXE-2B6052DE.pf │ │ ├── NOTEPAD.EXE-336351A9.pf │ │ └── VERCLSID.EXE-3667BD89.pf ├── TestPrefetchMain.cs ├── TestVersion17.cs ├── TestVersion23.cs ├── TestVersion26.cs └── TestVersion30.cs ├── Prefetch.sln ├── Prefetch ├── IPrefetch.cs ├── Other │ ├── FileMetric.cs │ ├── Header.cs │ ├── MFTInformation.cs │ ├── TraceChain.cs │ └── VolumeInfo.cs ├── Prefetch.csproj ├── PrefetchFile.cs ├── Versions │ ├── Version17.cs │ ├── Version23.cs │ ├── Version26.cs │ └── Version30or31.cs └── XpressStream │ └── Xpress2.cs ├── README.md ├── icon.png └── license /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.gitattributes -------------------------------------------------------------------------------- /.github/workflows/publish.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.github/workflows/publish.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.gitignore -------------------------------------------------------------------------------- /.idea/.idea.Prefetch/.idea/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.idea/.idea.Prefetch/.idea/.gitignore -------------------------------------------------------------------------------- /.idea/.idea.Prefetch/.idea/encodings.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.idea/.idea.Prefetch/.idea/encodings.xml -------------------------------------------------------------------------------- /.idea/.idea.Prefetch/.idea/indexLayout.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.idea/.idea.Prefetch/.idea/indexLayout.xml -------------------------------------------------------------------------------- /.idea/.idea.Prefetch/.idea/vcs.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/.idea/.idea.Prefetch/.idea/vcs.xml -------------------------------------------------------------------------------- /Prefetch.Test/Prefetch.Test.csproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/Prefetch.Test.csproj -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Bad/notAPrefetch.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Bad/notAPrefetch.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Vista/CMD.EXE-89305D47.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Vista/CMD.EXE-89305D47.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Vista/DLLHOST.EXE-893DDF55.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Vista/DLLHOST.EXE-893DDF55.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Vista/EXPLORER.EXE-7A3328DA.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Vista/EXPLORER.EXE-7A3328DA.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Vista/NOTEPAD.EXE-EB1B961A.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Vista/NOTEPAD.EXE-EB1B961A.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/CALC.EXE-3FBEF7FD.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/CALC.EXE-3FBEF7FD.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/CALCULATOR.EXE-6940BD5C.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/CALCULATOR.EXE-6940BD5C.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/CHROME.EXE-B3BA7868.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/CHROME.EXE-B3BA7868.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/CMD.EXE-D269B812.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/CMD.EXE-D269B812.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/DCODEDCODEDCODEDCODEDCODEDCOD-E65B9FE8.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/DCODEDCODEDCODEDCODEDCODEDCOD-E65B9FE8.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win10/DEVENV.EXE-854D7862.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win10/DEVENV.EXE-854D7862.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012/CALC.EXE-77FDF17F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012/CALC.EXE-77FDF17F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012/CMD.EXE-4A81B364.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012/CMD.EXE-4A81B364.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012/MSCORSVW.EXE-57D17DAF.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012/MSCORSVW.EXE-57D17DAF.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012/NOTEPAD.EXE-D8414F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012/NOTEPAD.EXE-D8414F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012/REGEDIT.EXE-90FEEA06.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012/REGEDIT.EXE-90FEEA06.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/CALC.EXE-77FDF17F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/CALC.EXE-77FDF17F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/CMD.EXE-4A81B364.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/CMD.EXE-4A81B364.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/CONHOST.EXE-1F3E9D7E.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/CONHOST.EXE-1F3E9D7E.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/DLLHOST.EXE-5E46FA0D.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/DLLHOST.EXE-5E46FA0D.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/LOGONUI.EXE-09140401.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/LOGONUI.EXE-09140401.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2012R2/NOTEPAD.EXE-D8414F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2012R2/NOTEPAD.EXE-D8414F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2k3/CALC.EXE-02CD573A.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2k3/CALC.EXE-02CD573A.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2k3/CMD.EXE-087B4001.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2k3/CMD.EXE-087B4001.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2k3/EXPLORER.EXE-082F38A9.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2k3/EXPLORER.EXE-082F38A9.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2k3/MMC.EXE-0721152E.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2k3/MMC.EXE-0721152E.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win2k3/NOTEPAD.EXE-336351A9.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win2k3/NOTEPAD.EXE-336351A9.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/CALC.EXE-77FDF17F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/CALC.EXE-77FDF17F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/CMD.EXE-4A81B364.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/CMD.EXE-4A81B364.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/DCODEDCODEDCODEDCODEDCODEDCOD-9054DA3F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/DCODEDCODEDCODEDCODEDCODEDCOD-9054DA3F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/DCODEDCODEDCODEDCODEDCODEDCOD-94896A93.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/DCODEDCODEDCODEDCODEDCODEDCOD-94896A93.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/DRVINST.EXE-5F8E77CD.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/DRVINST.EXE-5F8E77CD.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/EXPLORER.EXE-A80E4F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/EXPLORER.EXE-A80E4F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/NOTEPAD.EXE-D8414F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/NOTEPAD.EXE-D8414F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/PING.EXE-B29F6629.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/PING.EXE-B29F6629.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win7/WUAUCLT.EXE-830BCC14.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win7/WUAUCLT.EXE-830BCC14.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/CALC.EXE-77FDF17F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/CALC.EXE-77FDF17F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/CMD.EXE-4A81B364.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/CMD.EXE-4A81B364.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/CONSENT.EXE-531BD9EA.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/CONSENT.EXE-531BD9EA.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/LIVECOMM.EXE-A134F539.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/LIVECOMM.EXE-A134F539.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/LIVECOMM.EXE-D546E475.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/LIVECOMM.EXE-D546E475.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/NOTEPAD.EXE-D8414F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/NOTEPAD.EXE-D8414F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/POQEXEC.EXE-69592829.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/POQEXEC.EXE-69592829.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/TASKHOST.EXE-3AE259FC.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/TASKHOST.EXE-3AE259FC.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/WWAHOST.EXE-00A972CA.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/WWAHOST.EXE-00A972CA.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/_CALC.EXE-77FDF17F.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/_CALC.EXE-77FDF17F.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/_CMD.EXE-4A81B364.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/_CMD.EXE-4A81B364.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/Win8x/_NOTEPAD.EXE-D8414F97.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/Win8x/_NOTEPAD.EXE-D8414F97.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/CALC.EXE-02CD573A.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/CALC.EXE-02CD573A.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/CMD.EXE-087B4001.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/CMD.EXE-087B4001.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/EXPLORER.EXE-082F38A9.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/EXPLORER.EXE-082F38A9.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/MSIMN.EXE-38BA891D.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/MSIMN.EXE-38BA891D.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/MSMSGS.EXE-2B6052DE.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/MSMSGS.EXE-2B6052DE.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/NOTEPAD.EXE-336351A9.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/NOTEPAD.EXE-336351A9.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestFiles/XPPro/VERCLSID.EXE-3667BD89.pf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestFiles/XPPro/VERCLSID.EXE-3667BD89.pf -------------------------------------------------------------------------------- /Prefetch.Test/TestPrefetchMain.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestPrefetchMain.cs -------------------------------------------------------------------------------- /Prefetch.Test/TestVersion17.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestVersion17.cs -------------------------------------------------------------------------------- /Prefetch.Test/TestVersion23.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestVersion23.cs -------------------------------------------------------------------------------- /Prefetch.Test/TestVersion26.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestVersion26.cs -------------------------------------------------------------------------------- /Prefetch.Test/TestVersion30.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.Test/TestVersion30.cs -------------------------------------------------------------------------------- /Prefetch.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch.sln -------------------------------------------------------------------------------- /Prefetch/IPrefetch.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/IPrefetch.cs -------------------------------------------------------------------------------- /Prefetch/Other/FileMetric.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Other/FileMetric.cs -------------------------------------------------------------------------------- /Prefetch/Other/Header.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Other/Header.cs -------------------------------------------------------------------------------- /Prefetch/Other/MFTInformation.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Other/MFTInformation.cs -------------------------------------------------------------------------------- /Prefetch/Other/TraceChain.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Other/TraceChain.cs -------------------------------------------------------------------------------- /Prefetch/Other/VolumeInfo.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Other/VolumeInfo.cs -------------------------------------------------------------------------------- /Prefetch/Prefetch.csproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Prefetch.csproj -------------------------------------------------------------------------------- /Prefetch/PrefetchFile.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/PrefetchFile.cs -------------------------------------------------------------------------------- /Prefetch/Versions/Version17.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Versions/Version17.cs -------------------------------------------------------------------------------- /Prefetch/Versions/Version23.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Versions/Version23.cs -------------------------------------------------------------------------------- /Prefetch/Versions/Version26.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Versions/Version26.cs -------------------------------------------------------------------------------- /Prefetch/Versions/Version30or31.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/Versions/Version30or31.cs -------------------------------------------------------------------------------- /Prefetch/XpressStream/Xpress2.cs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/Prefetch/XpressStream/Xpress2.cs -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/README.md -------------------------------------------------------------------------------- /icon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/icon.png -------------------------------------------------------------------------------- /license: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/EricZimmerman/Prefetch/HEAD/license --------------------------------------------------------------------------------