From a20c041f3ed6b6a5bef0b9a83a10340a617042ba Mon Sep 17 00:00:00 2001
From: Imanol-Mikel Barba Sabariego <imanol@imanol-laptop>
Date: Tue, 25 Oct 2016 16:57:34 +0200
Subject: [PATCH] winreg module implemented. winvol var implemented. mount python module implemented. FAT volume listing implemented. NTFS volume listing improved.

---
 .idea/workspace.xml                       | 308 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++--------------------------------------------------------------------------------------------------------------------
 README.md                                 |   8 ++++++++
 __pycache__/mount.cpython-34.pyc          | Bin 0 -> 788 bytes
 __pycache__/runcmd.cpython-34.pyc         | Bin 391 -> 0 bytes
 __pycache__/tomb.cpython-34.pyc           | Bin 522 -> 0 bytes
 __pycache__/winver.cpython-34.pyc         | Bin 0 -> 2506 bytes
 digger.py                                 |  14 ++++++++++----
 modules/__pycache__/info.cpython-34.pyc   | Bin 929 -> 0 bytes
 modules/__pycache__/mft.cpython-34.pyc    | Bin 1120 -> 0 bytes
 modules/__pycache__/winreg.cpython-34.pyc | Bin 1002 -> 0 bytes
 modules/info.py                           |   1 +
 modules/winreg.py                         |  48 +++++++++++++++++++++++++++++++++++++++++++-----
 mount.py                                  |  18 ++++++++++++++++++
 scripts/list_fat.sh                       |  15 +++++++++++++++
 tomb.py                                   |   8 ++++----
 vars/__pycache__/ntfsvol.cpython-34.pyc   | Bin 1587 -> 0 bytes
 vars/__pycache__/winvol.cpython-34.pyc    | Bin 0 -> 2598 bytes
 vars/ntfsvol.py                           |  21 +++++++++++++--------
 vars/winvol.py                            |  63 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 winver.py                                 |  81 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 20 files changed, 448 insertions(+), 137 deletions(-)
 create mode 100644 README.md
 create mode 100644 __pycache__/mount.cpython-34.pyc
 create mode 100644 __pycache__/winver.cpython-34.pyc
 create mode 100644 mount.py
 create mode 100755 scripts/list_fat.sh
 create mode 100644 vars/__pycache__/winvol.cpython-34.pyc
 create mode 100644 vars/winvol.py
 create mode 100644 winver.py

diff --git a/.idea/workspace.xml b/.idea/workspace.xml
index e165abe..0819298 100644
--- a/.idea/workspace.xml
+++ b/.idea/workspace.xml
@@ -2,12 +2,17 @@
 <project version="4">
   <component name="ChangeListManager">
     <list default="true" id="33419617-7da8-422e-9ac6-68e0b317ebf8" name="Default" comment="">
-      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/modules/info.py" />
-      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/modules/winreg.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/README.md" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/mount.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/scripts/list_fat.sh" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/vars/winvol.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/winver.py" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/.idea/workspace.xml" afterPath="$PROJECT_DIR$/.idea/workspace.xml" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/digger.py" afterPath="$PROJECT_DIR$/digger.py" />
-      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/mft.py" afterPath="$PROJECT_DIR$/modules/mft.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/info.py" afterPath="$PROJECT_DIR$/modules/info.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/winreg.py" afterPath="$PROJECT_DIR$/modules/winreg.py" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/tomb.py" afterPath="$PROJECT_DIR$/tomb.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/vars/ntfsvol.py" afterPath="$PROJECT_DIR$/vars/ntfsvol.py" />
     </list>
     <ignored path="gravedigger.iws" />
     <ignored path=".idea/workspace.xml" />
@@ -32,112 +37,114 @@
   </component>
   <component name="FileEditorManager">
     <leaf>
-      <file leaf-file-name="digger.py" pinned="false" current-in-tab="true">
-        <entry file="file://$PROJECT_DIR$/digger.py">
+      <file leaf-file-name="winreg.py" pinned="false" current-in-tab="true">
+        <entry file="file://$PROJECT_DIR$/modules/winreg.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="446">
-              <caret line="75" column="13" selection-start-line="75" selection-start-column="13" selection-end-line="75" selection-end-column="13" />
+            <state relative-caret-position="485">
+              <caret line="56" column="49" selection-start-line="56" selection-start-column="49" selection-end-line="56" selection-end-column="49" />
               <folding>
-                <element signature="e#25#38#0" expanded="true" />
+                <element signature="e#0#25#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="runcmd.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/runcmd.py">
+      <file leaf-file-name="winvol.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/vars/winvol.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="76">
-              <caret line="4" column="22" selection-start-line="4" selection-start-column="22" selection-end-line="4" selection-end-column="22" />
+            <state relative-caret-position="222">
+              <caret line="42" column="33" selection-start-line="42" selection-start-column="22" selection-end-line="42" selection-end-column="33" />
+              <folding>
+                <element signature="e#0#31#0" expanded="true" />
+              </folding>
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="README.md" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/README.md">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="133">
+              <caret line="7" column="9" selection-start-line="7" selection-start-column="9" selection-end-line="7" selection-end-column="9" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="module.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/module.py">
+      <file leaf-file-name="list_fat.sh" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/scripts/list_fat.sh">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="152">
-              <caret line="8" column="21" selection-start-line="8" selection-start-column="21" selection-end-line="8" selection-end-column="21" />
+            <state relative-caret-position="133">
+              <caret line="7" column="18" selection-start-line="7" selection-start-column="18" selection-end-line="7" selection-end-column="18" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="ntfsvol.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
+      <file leaf-file-name="mount.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/mount.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="608">
-              <caret line="32" column="29" selection-start-line="32" selection-start-column="29" selection-end-line="32" selection-end-column="29" />
+            <state relative-caret-position="190">
+              <caret line="10" column="18" selection-start-line="10" selection-start-column="18" selection-end-line="10" selection-end-column="18" />
               <folding>
-                <element signature="e#0#31#0" expanded="true" />
+                <element signature="e#0#11#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="list_ntfs.sh" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/scripts/list_ntfs.sh">
+      <file leaf-file-name="runcmd.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/runcmd.py">
           <provider selected="true" editor-type-id="text-editor">
             <state relative-caret-position="38">
-              <caret line="2" column="83" selection-start-line="2" selection-start-column="83" selection-end-line="2" selection-end-column="83" />
+              <caret line="2" column="20" selection-start-line="2" selection-start-column="20" selection-end-line="2" selection-end-column="20" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="mft.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/mft.py">
+      <file leaf-file-name="module.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/module.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="0">
-              <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="25" selection-end-column="0" />
-              <folding>
-                <element signature="e#0#25#0" expanded="true" />
-              </folding>
+            <state relative-caret-position="76">
+              <caret line="4" column="0" selection-start-line="4" selection-start-column="0" selection-end-line="4" selection-end-column="0" />
+              <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="winreg.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+      <file leaf-file-name="digger.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/digger.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="323">
-              <caret line="17" column="12" selection-start-line="17" selection-start-column="12" selection-end-line="18" selection-end-column="10" />
+            <state relative-caret-position="276">
+              <caret line="71" column="41" selection-start-line="71" selection-start-column="41" selection-end-line="71" selection-end-column="41" />
               <folding>
-                <element signature="e#0#25#0" expanded="true" />
+                <element signature="e#25#38#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="info.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/info.py">
+      <file leaf-file-name="winver.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/winver.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="266">
-              <caret line="14" column="22" selection-start-line="14" selection-start-column="22" selection-end-line="14" selection-end-column="22" />
+            <state relative-caret-position="447">
+              <caret line="69" column="17" selection-start-line="69" selection-start-column="17" selection-end-line="69" selection-end-column="17" />
               <folding>
-                <element signature="e#0#25#0" expanded="true" />
+                <element signature="e#0#9#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="tomb.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/tomb.py">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="114">
-              <caret line="6" column="27" selection-start-line="6" selection-start-column="27" selection-end-line="6" selection-end-column="27" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="modulevar.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modulevar.py">
+      <file leaf-file-name="ntfsvol.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="114">
-              <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
-              <folding />
+            <state relative-caret-position="295">
+              <caret line="21" column="56" selection-start-line="21" selection-start-column="56" selection-end-line="21" selection-end-column="56" />
+              <folding>
+                <element signature="e#0#31#0" expanded="true" />
+              </folding>
             </state>
           </provider>
         </entry>
@@ -163,14 +170,20 @@
         <option value="$PROJECT_DIR$/modulevar.py" />
         <option value="$PROJECT_DIR$/module.py" />
         <option value="$PROJECT_DIR$/scripts/digger.sh" />
-        <option value="$PROJECT_DIR$/runcmd.py" />
-        <option value="$PROJECT_DIR$/vars/ntfsvol.py" />
-        <option value="$PROJECT_DIR$/scripts/list_ntfs.sh" />
         <option value="$PROJECT_DIR$/tomb.py" />
+        <option value="$PROJECT_DIR$/scripts/list_ntfs.sh" />
         <option value="$PROJECT_DIR$/modules/mft.py" />
         <option value="$PROJECT_DIR$/modules/info.py" />
-        <option value="$PROJECT_DIR$/modules/winreg.py" />
+        <option value="$PROJECT_DIR$/modules/mount.py" />
+        <option value="$PROJECT_DIR$/scripts/list_fat.sh" />
         <option value="$PROJECT_DIR$/digger.py" />
+        <option value="$PROJECT_DIR$/runcmd.py" />
+        <option value="$PROJECT_DIR$/mount.py" />
+        <option value="$PROJECT_DIR$/README.md" />
+        <option value="$PROJECT_DIR$/vars/ntfsvol.py" />
+        <option value="$PROJECT_DIR$/vars/winvol.py" />
+        <option value="$PROJECT_DIR$/winver.py" />
+        <option value="$PROJECT_DIR$/modules/winreg.py" />
       </list>
     </option>
   </component>
@@ -181,10 +194,10 @@
     <sorting>DEFINITION_ORDER</sorting>
   </component>
   <component name="ProjectFrameBounds">
-    <option name="x" value="2113" />
-    <option name="y" value="215" />
+    <option name="x" value="1915" />
+    <option name="y" value="31" />
     <option name="width" value="1930" />
-    <option name="height" value="1173" />
+    <option name="height" value="1174" />
   </component>
   <component name="ProjectLevelVcsManager" settingsEditedManually="false">
     <OptionsSetting value="true" id="Add" />
@@ -255,6 +268,20 @@
               <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
             </PATH_ELEMENT>
             <PATH_ELEMENT>
+              <option name="myItemId" value="scripts" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
+            </PATH_ELEMENT>
+          </PATH>
+          <PATH>
+            <PATH_ELEMENT>
+              <option name="myItemId" value="gravedigger" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.ProjectViewProjectNode" />
+            </PATH_ELEMENT>
+            <PATH_ELEMENT>
+              <option name="myItemId" value="gravedigger" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
+            </PATH_ELEMENT>
+            <PATH_ELEMENT>
               <option name="myItemId" value="modules" />
               <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
             </PATH_ELEMENT>
@@ -267,6 +294,9 @@
     <property name="WebServerToolWindowFactoryState" value="false" />
   </component>
   <component name="RecentsManager">
+    <key name="CopyFile.RECENT_KEYS">
+      <recent name="$PROJECT_DIR$/vars" />
+    </key>
     <key name="MoveFile.RECENT_KEYS">
       <recent name="$PROJECT_DIR$" />
       <recent name="$PROJECT_DIR$/scripts" />
@@ -519,27 +549,27 @@
     <servers />
   </component>
   <component name="ToolWindowManager">
-    <frame x="2113" y="215" width="1930" height="1173" extended-state="0" />
+    <frame x="1915" y="31" width="1930" height="1174" extended-state="6" />
     <editor active="true" />
     <layout>
-      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="0" side_tool="false" content_ui="combo" />
-      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
-      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="true" content_ui="tabs" />
-      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Python Console" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.33023256" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
-      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="true" content_ui="tabs" />
-      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
-      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
-      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="combo" />
-      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
-      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="combo" />
+      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="10" side_tool="false" content_ui="tabs" />
+      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="true" content_ui="tabs" />
+      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
+      <window_info id="Python Console" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
+      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.32992566" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
+      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
+      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
+      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="true" content_ui="tabs" />
+      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="7" side_tool="false" content_ui="tabs" />
+      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="8" side_tool="false" content_ui="tabs" />
+      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="3" side_tool="false" content_ui="combo" />
+      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
+      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
+      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="9" side_tool="false" content_ui="tabs" />
+      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
     </layout>
   </component>
   <component name="Vcs.Log.UiProperties">
@@ -582,92 +612,138 @@
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/runcmd.py">
+    <entry file="file://$PROJECT_DIR$/modules/mft.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="76">
-          <caret line="4" column="22" selection-start-line="4" selection-start-column="22" selection-end-line="4" selection-end-column="22" />
+        <state relative-caret-position="399">
+          <caret line="21" column="37" selection-start-line="21" selection-start-column="37" selection-end-line="21" selection-end-column="37" />
+          <folding>
+            <element signature="e#0#25#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/tomb.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="228">
+          <caret line="12" column="15" selection-start-line="12" selection-start-column="15" selection-end-line="12" selection-end-column="15" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/module.py">
+    <entry file="file://$PROJECT_DIR$/modulevar.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="152">
-          <caret line="8" column="21" selection-start-line="8" selection-start-column="21" selection-end-line="8" selection-end-column="21" />
+        <state relative-caret-position="114">
+          <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
+    <entry file="file://$PROJECT_DIR$/modules/info.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="608">
-          <caret line="32" column="29" selection-start-line="32" selection-start-column="29" selection-end-line="32" selection-end-column="29" />
+        <state relative-caret-position="228">
+          <caret line="12" column="3" selection-start-line="12" selection-start-column="3" selection-end-line="12" selection-end-column="3" />
           <folding>
-            <element signature="e#0#31#0" expanded="true" />
+            <element signature="e#0#25#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
     <entry file="file://$PROJECT_DIR$/scripts/list_ntfs.sh">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="38">
-          <caret line="2" column="83" selection-start-line="2" selection-start-column="83" selection-end-line="2" selection-end-column="83" />
+        <state relative-caret-position="0">
+          <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="9" selection-end-column="4" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/info.py">
+    <entry file="file://$PROJECT_DIR$/scripts/list_fat.sh">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="133">
+          <caret line="7" column="18" selection-start-line="7" selection-start-column="18" selection-end-line="7" selection-end-column="18" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/module.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="76">
+          <caret line="4" column="0" selection-start-line="4" selection-start-column="0" selection-end-line="4" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/digger.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="266">
-          <caret line="14" column="22" selection-start-line="14" selection-start-column="22" selection-end-line="14" selection-end-column="22" />
+        <state relative-caret-position="276">
+          <caret line="71" column="41" selection-start-line="71" selection-start-column="41" selection-end-line="71" selection-end-column="41" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#25#38#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/tomb.py">
+    <entry file="file://$PROJECT_DIR$/runcmd.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="114">
-          <caret line="6" column="27" selection-start-line="6" selection-start-column="27" selection-end-line="6" selection-end-column="27" />
+        <state relative-caret-position="38">
+          <caret line="2" column="20" selection-start-line="2" selection-start-column="20" selection-end-line="2" selection-end-column="20" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modulevar.py">
+    <entry file="file://$PROJECT_DIR$/mount.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="114">
-          <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
+        <state relative-caret-position="190">
+          <caret line="10" column="18" selection-start-line="10" selection-start-column="18" selection-end-line="10" selection-end-column="18" />
+          <folding>
+            <element signature="e#0#11#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/README.md">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="133">
+          <caret line="7" column="9" selection-start-line="7" selection-start-column="9" selection-end-line="7" selection-end-column="9" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/mft.py">
+    <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="0">
-          <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="25" selection-end-column="0" />
+        <state relative-caret-position="295">
+          <caret line="21" column="56" selection-start-line="21" selection-start-column="56" selection-end-line="21" selection-end-column="56" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#0#31#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+    <entry file="file://$PROJECT_DIR$/vars/winvol.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="323">
-          <caret line="17" column="12" selection-start-line="17" selection-start-column="12" selection-end-line="18" selection-end-column="10" />
+        <state relative-caret-position="222">
+          <caret line="42" column="33" selection-start-line="42" selection-start-column="22" selection-end-line="42" selection-end-column="33" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#0#31#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/digger.py">
+    <entry file="file://$PROJECT_DIR$/winver.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="446">
-          <caret line="75" column="13" selection-start-line="75" selection-start-column="13" selection-end-line="75" selection-end-column="13" />
+        <state relative-caret-position="447">
+          <caret line="69" column="17" selection-start-line="69" selection-start-column="17" selection-end-line="69" selection-end-column="17" />
           <folding>
-            <element signature="e#25#38#0" expanded="true" />
+            <element signature="e#0#9#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="485">
+          <caret line="56" column="49" selection-start-line="56" selection-start-column="49" selection-end-line="56" selection-end-column="49" />
+          <folding>
+            <element signature="e#0#25#0" expanded="true" />
           </folding>
         </state>
       </provider>
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..7886218
--- /dev/null
+++ b/README.md
@@ -0,0 +1,8 @@
+REQUIRED PACKAGES
+------------------
+
+* python3
+* python3-dialog
+* sleuthkit
+* pev
+* ntfs-3g
\ No newline at end of file
diff --git a/__pycache__/mount.cpython-34.pyc b/__pycache__/mount.cpython-34.pyc
new file mode 100644
index 0000000..6c1c495
Binary files /dev/null and b/__pycache__/mount.cpython-34.pyc differ
diff --git a/__pycache__/runcmd.cpython-34.pyc b/__pycache__/runcmd.cpython-34.pyc
index 488d527..bb6fe47 100644
Binary files a/__pycache__/runcmd.cpython-34.pyc and b/__pycache__/runcmd.cpython-34.pyc differ
diff --git a/__pycache__/tomb.cpython-34.pyc b/__pycache__/tomb.cpython-34.pyc
index 9e5e46e..5ed0401 100644
Binary files a/__pycache__/tomb.cpython-34.pyc and b/__pycache__/tomb.cpython-34.pyc differ
diff --git a/__pycache__/winver.cpython-34.pyc b/__pycache__/winver.cpython-34.pyc
new file mode 100644
index 0000000..87f089a
Binary files /dev/null and b/__pycache__/winver.cpython-34.pyc differ
diff --git a/digger.py b/digger.py
index 6d3f122..43175d8 100644
--- a/digger.py
+++ b/digger.py
@@ -7,6 +7,7 @@ import os
 import sys
 import subprocess as sp
 import tomb
+import traceback
 
 sys.path.append('modules')
 sys.path.append('vars')
@@ -31,9 +32,12 @@ def getModules():
     return choiceList
 
 def prepareModule(moduleName):
-    module = __import__(moduleName).getInstance()
-    module.getVars()
-    return module
+    try:
+        module = __import__(moduleName).getInstance()
+        module.getVars()
+        return module
+    except Exception as e:
+        raise Exception("[" + moduleName + "] " + str(e))
 
 locale.setlocale(locale.LC_ALL, '')
 d = Dialog(dialog="dialog",autowidgetsize=True)
@@ -42,7 +46,7 @@ d.set_background_title("Gravedigger")
 moduleList = getModules()
 code,value = d.inputbox("Input computer's name")
 if code == d.OK:
-    tomb.__MACHINE_NAME__ = value
+    tomb._MACHINE_NAME= value
     d.set_background_title("Gravedigger - " + value)
     code, tags = d.checklist("Select modules to execute",
                          choices=moduleList + [("all","Execute all modules",False)],
@@ -65,6 +69,7 @@ if code == d.OK:
                     module.run()
                 except Exception as e:
                     print("Exception raised while running " + module.name + ": " + str(e))
+                    traceback.print_exc()
 
             code, tag = d.menu("All modules finished execution",choices=[("Poweroff","Shutdown the computer"),
                                                                          ("Reboot","Reboot the computer"),
@@ -78,5 +83,6 @@ if code == d.OK:
 
         except Exception as e:
             print("Exception raised while preparing module: " + str(e))
+            traceback.print_exc()
 
 
diff --git a/modules/__pycache__/info.cpython-34.pyc b/modules/__pycache__/info.cpython-34.pyc
index b7b63fa..6d588e3 100644
Binary files a/modules/__pycache__/info.cpython-34.pyc and b/modules/__pycache__/info.cpython-34.pyc differ
diff --git a/modules/__pycache__/mft.cpython-34.pyc b/modules/__pycache__/mft.cpython-34.pyc
index d021b14..1e185af 100644
Binary files a/modules/__pycache__/mft.cpython-34.pyc and b/modules/__pycache__/mft.cpython-34.pyc differ
diff --git a/modules/__pycache__/winreg.cpython-34.pyc b/modules/__pycache__/winreg.cpython-34.pyc
index 2c4d4be..18cc46a 100644
Binary files a/modules/__pycache__/winreg.cpython-34.pyc and b/modules/__pycache__/winreg.cpython-34.pyc differ
diff --git a/modules/info.py b/modules/info.py
index a0b25ba..98c7ff1 100644
--- a/modules/info.py
+++ b/modules/info.py
@@ -17,4 +17,5 @@ class INFOModule(Module):
     def run(self):
         path = tomb.getPath() + self.name + "/"
         os.mkdir(path)
+        #TODO
         #getinfo
diff --git a/modules/winreg.py b/modules/winreg.py
index b55581f..73000ab 100644
--- a/modules/winreg.py
+++ b/modules/winreg.py
@@ -1,7 +1,9 @@
 from module import Module
-from runcmd import runProcess
 import tomb
 import os
+import winver
+from runcmd import runProcess
+from mount import mount,umount
 
 def getInstance():
     return RegistryModule()
@@ -11,13 +13,49 @@ class RegistryModule(Module):
     def __init__(self):
         self.name = "winreg"
         self.description = "Extracts Windows Registry files"
-        self.requiredVars = ["ntfsvol"]
+        self.requiredVars = ["winvol"]
         self.vars = {}
 
     def run(self):
         path = tomb.getPath() + self.name + "/"
         os.mkdir(path)
-        for vol in self.vars['ntfsvol'].value:
-            pass
-            #runstuff
+        for vol in self.vars['winvol'].value:
+            mntpoint = "/mnt/"
+            mntid = mount("/dev/" + vol)
+            mntpoint += mntid
+            files = []
+            windir = winver.getWindowsDirectory(mntpoint)
+            if windir == None:
+                raise Exception("No Windows installation present")
+            version = winver.getWindowsVersion(mntpoint)
+            profiles = winver.getUserProfiles(mntpoint)
+            if version <= winver._WIN_ME:
+                #9x
+                files = [windir + "USER.DAT",windir + "SYSTEM.DAT"]
+                if(len(profiles) > 0):
+                    for profile in profiles:
+                        if(os.path.isfile(profile + "USER.DAT")):
+                            files += [profile + "USER.DAT"]
+                if version == winver._WIN_ME:
+                    #ME
+                    files += [windir + "CLASSES.DAT"]
+
+            elif version > winver._WIN_ME:
+                    #NT
+                    files += [windir + "/System32/config/SAM" ]
+                    files += [windir + "/System32/config/SECURITY"]
+                    files += [windir + "/System32/config/SOFTWARE"]
+                    files += [windir + "/System32/config/SYSTEM"]
+                    files += [windir + "/System32/config/DEFAULT"]
+                    for profile in profiles:
+                        files += [profile + "/NTUSER.DAT"]
+                        if version > winver._WIN_NT and version < winver._WIN_VISTA:
+                            #2k XP 2k3
+                            files += [profile + "/Local Settings/Application Data/Microsoft/Windows/UsrClass.dat"]
+                        else:
+                            #Vista+
+                            files += [profile + "/AppData/Local/Microsoft/Windows/UsrClass.dat"]
 
+            print(files)
+            runProcess(["tar","-czvf",path + "winreg_" + vol + ".tar.gz"] + files)
+            umount(mntid)
diff --git a/mount.py b/mount.py
new file mode 100644
index 0000000..259d1b8
--- /dev/null
+++ b/mount.py
@@ -0,0 +1,18 @@
+import uuid
+import os
+from runcmd import runProcess
+
+def mount(device):
+    mountID = str(uuid.uuid4())
+    os.mkdir("/mnt/" + mountID)
+    output, code = runProcess(["mount","-o","ro",device,"/mnt/" + mountID])
+    if code != 0:
+        raise Exception("Unable to mount " + device)
+    return mountID
+
+
+def umount(mountID):
+    output, code = runProcess(["umount","/mnt/" + mountID])
+    if code != 0:
+        raise Exception("Unable to umount " + mountID)
+    os.rmdir("/mnt/" + mountID)
\ No newline at end of file
diff --git a/scripts/list_fat.sh b/scripts/list_fat.sh
new file mode 100755
index 0000000..ec907f5
--- /dev/null
+++ b/scripts/list_fat.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+# Outputs, separated by newlines, the list of FAT volumes present on this computer
+
+for disk in $(cat /proc/partitions  | awk -F " " '{print $NF}' | tail -n+3); do
+    HEADER=$(dd if="/dev/$disk" bs=1 skip=82 count=5 2> /dev/null)
+    if [[ $HEADER == "FAT32" ]]; then
+        echo $disk
+    else
+        HEADER=$(dd if="/dev/$disk" bs=1 skip=54 count=5 2> /dev/null)
+        if [[ $HEADER == "FAT16" || $HEADER == "FAT12" ]]; then
+            echo $disk
+        fi
+    fi
+done
\ No newline at end of file
diff --git a/tomb.py b/tomb.py
index f8d04ac..61bf0d0 100644
--- a/tomb.py
+++ b/tomb.py
@@ -1,13 +1,13 @@
 import os
 
-__ROOT_PATH__ = "/bones/"
-__MACHINE_NAME__ = "JOHN_DOE"
+_ROOT_PATH = "/bones/"
+_MACHINE_NAME = "JOHN_DOE"
 
 def __getTomb__():
-    return __MACHINE_NAME__
+    return _MACHINE_NAME
 
 def getPath():
-    path = __ROOT_PATH__ + __getTomb__() + "/"
+    path = _ROOT_PATH + __getTomb__() + "/"
     if not os.path.exists(path):
         os.makedirs(path)
     return path
\ No newline at end of file
diff --git a/vars/__pycache__/ntfsvol.cpython-34.pyc b/vars/__pycache__/ntfsvol.cpython-34.pyc
index e54105b..ccd6034 100644
Binary files a/vars/__pycache__/ntfsvol.cpython-34.pyc and b/vars/__pycache__/ntfsvol.cpython-34.pyc differ
diff --git a/vars/__pycache__/winvol.cpython-34.pyc b/vars/__pycache__/winvol.cpython-34.pyc
new file mode 100644
index 0000000..fe22bc8
Binary files /dev/null and b/vars/__pycache__/winvol.cpython-34.pyc differ
diff --git a/vars/ntfsvol.py b/vars/ntfsvol.py
index e0715c3..2cbb478 100644
--- a/vars/ntfsvol.py
+++ b/vars/ntfsvol.py
@@ -15,18 +15,23 @@ class NTFSVol(Modulevar):
 
     def getNTFSVolumes(self):
         result = runProcess("scripts/list_ntfs.sh")
-        volumes = result[0].decode("utf-8").splitlines()
-        print(volumes)
-        choices = []
-        for vol in volumes:
-            choices.append((vol,"",False))
-        return choices
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["ntfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
 
     def query(self):
         d = Dialog(dialog="dialog", autowidgetsize=True)
         d.set_background_title("[" + self.parentModule + "] Setting variable: ntfsvol")
-        volumeList = self.getNTFSVolumes()
-        code, vols = d.checklist("Select NTFS volumes to extract the MFT",
+        volumes = self.getNTFSVolumes()
+        if(len(volumes) == 0):
+            raise Exception("[" + self.name + "] No Windows Volumes found")
+        volumeList = []
+        for vol in volumes:
+            volumeList.append((vol[0],vol[1], False))
+        code, vols = d.checklist("Select NTFS volumes",
                                  choices=volumeList,
                                  title="Module selection")
         if code == d.OK:
diff --git a/vars/winvol.py b/vars/winvol.py
new file mode 100644
index 0000000..722b7c0
--- /dev/null
+++ b/vars/winvol.py
@@ -0,0 +1,63 @@
+from modulevar import Modulevar
+from dialog import Dialog
+from runcmd import runProcess
+import winver
+from mount import mount,umount
+
+def getInstance(modname):
+    return WinVol(modname)
+
+class WinVol(Modulevar):
+
+    def __init__(self,modname):
+        self.name = "winvol"
+        self.parentModule = modname
+        self.description = "Windows Volume"
+        self.value = None
+
+    def getNTFSVolumes(self):
+        result = runProcess("scripts/list_ntfs.sh")
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["ntfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
+
+    def getFATVolumes(self):
+        result = runProcess("scripts/list_fat.sh")
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["dosfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
+
+    def getWindowsVolumes(self):
+        volumes = self.getNTFSVolumes() + self.getFATVolumes()
+        winvols = []
+        for volume in volumes:
+            mntpoint = "/mnt/"
+            mntid = mount("/dev/" + volume[0])
+            mntpoint += mntid
+            if(winver.getWindowsDirectory(mntpoint) != None):
+                winvols.append(volume)
+            umount(mntid)
+        return winvols
+
+    def query(self):
+        d = Dialog(dialog="dialog", autowidgetsize=True)
+        d.set_background_title("[" + self.parentModule + "] Setting variable: winvol")
+        volumes = self.getWindowsVolumes()
+        if(len(volumes) == 0):
+            raise Exception("[" + self.name + "] No Windows Volumes found")
+        volumeList = []
+        for vol in volumes:
+            volumeList.append((vol[0],vol[1], False))
+        code, vols = d.checklist("Select Windows volumes",
+                                 choices=volumeList,
+                                 title="Module selection")
+        if code == d.OK:
+            self.value = vols
+        else:
+            raise Exception("[" + self.name + "] Operation Cancelled")
\ No newline at end of file
diff --git a/winver.py b/winver.py
new file mode 100644
index 0000000..e69d95a
--- /dev/null
+++ b/winver.py
@@ -0,0 +1,81 @@
+import os
+from runcmd import runProcess
+import re
+
+_WIN_9x     = 0
+_WIN_ME     = 1
+_WIN_NT     = 2
+_WIN_2k     = 3
+_WIN_XP     = 4
+_WIN_2k3    = 5
+_WIN_VISTA  = 6
+_WIN_2k8    = 6
+_WIN_7      = 7
+_WIN_2k8R2  = 7
+_WIN_8      = 8
+_WIN_2k12   = 8
+_WIN_81     = 9
+_WIN_2k12R2 = 9
+_WIN_10     = 10
+
+
+
+def getWindowsVersion(path):
+    if(os.path.isfile(getWindowsDirectory(path) + "/System32/ntdll.dll")):
+        output,code = runProcess(["pev","-p",getWindowsDirectory(path) + "/System32/ntdll.dll"])
+        version = output.decode("utf-8")
+        if re.match("(3|4)\.",version) != None:
+            return _WIN_NT
+        elif re.match("5\.0",version) != None:
+            return _WIN_2k
+        elif re.match("5\.1", version) != None:
+            return _WIN_XP
+        elif re.match("5\.2", version) != None:
+            return _WIN_2k3
+        elif re.match("6\.0", version) != None:
+            return _WIN_VISTA
+        elif re.match("6\.1", version) != None:
+            return _WIN_7
+        elif re.match("6\.2", version) != None:
+            return _WIN_8
+        elif re.match("6\.3", version) != None:
+            return _WIN_81
+        elif re.match("10\.", version) != None:
+            return _WIN_10
+    else:
+        if(os.path.isfile(getWindowsDirectory(path) + "/CLASSES.DAT")):
+            return _WIN_ME
+        return _WIN_9x
+
+def getWindowsDirectory(path):
+    result,code = runProcess(["find",path,"-xdev","-iname","explorer.exe","-print","-quit"])
+    if(result.decode("utf-8") == ""):
+        return None
+    matches = result.decode("utf-8").splitlines()
+    #WARNING: ONLY CONSIDERING FIRST MATCH
+    #TODO: Improve
+    return os.path.dirname(os.path.realpath(matches[0]))
+
+def getUserProfiles(path):
+    version = getWindowsVersion(path)
+    if version < _WIN_XP:
+        profilepath = getWindowsDirectory(path) + "/Profiles"
+        if (os.path.exists(profilepath)):
+            return [profilepath + prof for prof in os.listdir(profilepath)]
+        return []
+    elif version == _WIN_XP:
+        profilepath = path + "/Documents and Settings"
+        if (os.path.exists(profilepath)):
+            return [profilepath + prof for prof in os.listdir(profilepath)]
+        return []
+    else:
+        profiles = []
+        profilepath = path + "/Users"
+        print(profilepath)
+        if (os.path.exists(profilepath)):
+            for elem in os.listdir(profilepath):
+                if(os.path.isdir(profilepath + "/" + elem)):
+                    profiles.append(profilepath + "/" + elem)
+
+        return profiles
+    pass
\ No newline at end of file
--
libgit2 0.22.2