From e9b9e3ba6caa336271aefc547be190c5a37cd92e Mon Sep 17 00:00:00 2001 From: sidomir7 <40425078+sidomir7@users.noreply.github.com> Date: Thu, 9 Oct 2025 14:57:22 +0200 Subject: [PATCH 1/6] Update Windows_SearchService.yaml Updated glob for find also Windows.db --- definitions/Windows_SearchService.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index 6d14c3f..abf01dd 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -7,9 +7,9 @@ Description: | Categories: - Windows -FilenameRegex: "Windows.edb" +FilenameRegex: "Windows.edb" or "Windows.*db" Globs: - - C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb + - C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.*db Sources: - name: SystemIndex_Gthr From fd5501791fe759f63d19f751b43e48cb3a320191 Mon Sep 17 00:00:00 2001 From: Mike Cohen Date: Fri, 10 Oct 2025 00:02:38 +1000 Subject: [PATCH 2/6] Update Windows_SearchService.yaml --- definitions/Windows_SearchService.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index abf01dd..6918479 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -9,7 +9,7 @@ Categories: FilenameRegex: "Windows.edb" or "Windows.*db" Globs: - - C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.*db + - "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.*db" Sources: - name: SystemIndex_Gthr From 2f98978bbb090e57fa02dbcd271f82d159c79886 Mon Sep 17 00:00:00 2001 From: Mike Cohen Date: Fri, 10 Oct 2025 00:03:49 +1000 Subject: [PATCH 3/6] Update Windows_SearchService.yaml --- definitions/Windows_SearchService.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index 6918479..94c8175 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -9,7 +9,7 @@ Categories: FilenameRegex: "Windows.edb" or "Windows.*db" Globs: - - "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.*db" + - "C:\\ProgramData\\Microsoft\\Search\Data\\Applications\\Windows\\Windows.*db" Sources: - name: SystemIndex_Gthr From 3728a6c0910cd36706d35c99473c53104ed731d1 Mon Sep 17 00:00:00 2001 From: Mike Cohen Date: Fri, 10 Oct 2025 00:04:24 +1000 Subject: [PATCH 4/6] Update Windows_SearchService.yaml --- definitions/Windows_SearchService.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index 94c8175..f93d118 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -9,7 +9,7 @@ Categories: FilenameRegex: "Windows.edb" or "Windows.*db" Globs: - - "C:\\ProgramData\\Microsoft\\Search\Data\\Applications\\Windows\\Windows.*db" + - "C:\\ProgramData\\Microsoft\\Search\\Data\\Applications\\Windows\\Windows.*db" Sources: - name: SystemIndex_Gthr From 10ca93186b2d163d3cd32fe15bb4f65d7c976079 Mon Sep 17 00:00:00 2001 From: Mike Cohen Date: Fri, 10 Oct 2025 00:06:43 +1000 Subject: [PATCH 5/6] Update Windows_SearchService.yaml --- definitions/Windows_SearchService.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index f93d118..6671669 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -7,7 +7,7 @@ Description: | Categories: - Windows -FilenameRegex: "Windows.edb" or "Windows.*db" +FilenameRegex: '"Windows.edb" or "Windows.*db"' Globs: - "C:\\ProgramData\\Microsoft\\Search\\Data\\Applications\\Windows\\Windows.*db" From b9ce1a517452bad38089cdd87faef0c09da22017 Mon Sep 17 00:00:00 2001 From: Mike Cohen Date: Fri, 10 Oct 2025 00:08:11 +1000 Subject: [PATCH 6/6] Update Windows_SearchService.yaml --- definitions/Windows_SearchService.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/definitions/Windows_SearchService.yaml b/definitions/Windows_SearchService.yaml index 6671669..1920b8f 100644 --- a/definitions/Windows_SearchService.yaml +++ b/definitions/Windows_SearchService.yaml @@ -7,7 +7,7 @@ Description: | Categories: - Windows -FilenameRegex: '"Windows.edb" or "Windows.*db"' +FilenameRegex: "Windows..db" Globs: - "C:\\ProgramData\\Microsoft\\Search\\Data\\Applications\\Windows\\Windows.*db"